Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    af00fd8de95635a3bd690d4a2805e991_JC.exe

  • Size

    340KB

  • Sample

    230917-pbxvasac4s

  • MD5

    af00fd8de95635a3bd690d4a2805e991

  • SHA1

    7e3895433374093b3971448b22cebc897416044a

  • SHA256

    16820642e635f0b0636e418087a71ec5cd46c75c750c8239e4167b625eec0547

  • SHA512

    0ecc4d8468fc94cc6dd0275937913555d9d8171c11da83950ef6ddfd989a72454f198e4a0dc6ad08682ef825f178f047eed62798d0b45a5f4769dd07a26a66e5

  • SSDEEP

    6144:rsBBdi7fnOf3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:rudirnB32XXf9Do3i

Score
10/10

Malware Config

Targets

    • Target

      af00fd8de95635a3bd690d4a2805e991_JC.exe

    • Size

      340KB

    • MD5

      af00fd8de95635a3bd690d4a2805e991

    • SHA1

      7e3895433374093b3971448b22cebc897416044a

    • SHA256

      16820642e635f0b0636e418087a71ec5cd46c75c750c8239e4167b625eec0547

    • SHA512

      0ecc4d8468fc94cc6dd0275937913555d9d8171c11da83950ef6ddfd989a72454f198e4a0dc6ad08682ef825f178f047eed62798d0b45a5f4769dd07a26a66e5

    • SSDEEP

      6144:rsBBdi7fnOf3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:rudirnB32XXf9Do3i

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks