Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    apple.exe

  • Size

    3.3MB

  • Sample

    230826-txk5vadh3z

  • MD5

    ba268b881bccd2784fe98289eec8ad72

  • SHA1

    0c4e7f1473fb7ab22427480c3d784b6e0e404956

  • SHA256

    c83921c8dda800ef24ebe873ec175617110dc9deb2629d1107f219ca30caece3

  • SHA512

    30c836bb91ef96f5952571bba27d08c32011e619890fae392f882e5c7db7558ed26e6aa1fbdc2ce7d22c0a6aebc580e17ae807de70d99945cb2b438bd8cbbb3b

  • SSDEEP

    49152:98jzvhuGMsOTenal2tV594MzhJD3TMgwQiPRxksa2EQUFO0JIbn6/ubWYY725hXQ:9QFXlbnal2XDhZRwRVsE0JDoWYJPXLk

Score
8/10

Malware Config

Targets

    • Target

      apple.exe

    • Size

      3.3MB

    • MD5

      ba268b881bccd2784fe98289eec8ad72

    • SHA1

      0c4e7f1473fb7ab22427480c3d784b6e0e404956

    • SHA256

      c83921c8dda800ef24ebe873ec175617110dc9deb2629d1107f219ca30caece3

    • SHA512

      30c836bb91ef96f5952571bba27d08c32011e619890fae392f882e5c7db7558ed26e6aa1fbdc2ce7d22c0a6aebc580e17ae807de70d99945cb2b438bd8cbbb3b

    • SSDEEP

      49152:98jzvhuGMsOTenal2tV594MzhJD3TMgwQiPRxksa2EQUFO0JIbn6/ubWYY725hXQ:9QFXlbnal2XDhZRwRVsE0JDoWYJPXLk

    Score
    8/10
    • Modifies Windows Firewall

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Drops desktop.ini file(s)

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks