Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
7df44fc7e38a00c98f4c5b4392a085aa7acd683908511b6db11cb86da8111b90
-
Size
1.3MB
-
Sample
230921-kxkdwaeh8y
-
MD5
bb43aabe94cd4da7d2c1a3b4cdb8a25b
-
SHA1
326e19db89a82e7e42384b41c3b5f0930806eb89
-
SHA256
7df44fc7e38a00c98f4c5b4392a085aa7acd683908511b6db11cb86da8111b90
-
SHA512
8da08b9d2903c730f32643afd61bb1235d05b3dd7698b456016a6d8e7ef22a8c58e1314eb50d7170ac6af96c8fbfa4c0056878a59f907c355c0d1fbb9317cf36
-
SSDEEP
24576:+yyL0rARXHB9OOSdVgUGYld9BCXc9hbov1xTXttLqr7deZQCa:NynNLjC94QbA1dd48ZP
Static task
static1
Behavioral task
behavioral1
Sample
7df44fc7e38a00c98f4c5b4392a085aa7acd683908511b6db11cb86da8111b90.exe
Resource
win10-20230915-en
Malware Config
Targets
-
-
Target
7df44fc7e38a00c98f4c5b4392a085aa7acd683908511b6db11cb86da8111b90
-
Size
1.3MB
-
MD5
bb43aabe94cd4da7d2c1a3b4cdb8a25b
-
SHA1
326e19db89a82e7e42384b41c3b5f0930806eb89
-
SHA256
7df44fc7e38a00c98f4c5b4392a085aa7acd683908511b6db11cb86da8111b90
-
SHA512
8da08b9d2903c730f32643afd61bb1235d05b3dd7698b456016a6d8e7ef22a8c58e1314eb50d7170ac6af96c8fbfa4c0056878a59f907c355c0d1fbb9317cf36
-
SSDEEP
24576:+yyL0rARXHB9OOSdVgUGYld9BCXc9hbov1xTXttLqr7deZQCa:NynNLjC94QbA1dd48ZP
Score10/10-
Detects Healer an antivirus disabler dropper
-
Executes dropped EXE
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1