Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0002455510da982d0474ed8aaf5f7756_JC.exe
-
Size
420KB
-
Sample
231011-2v1rhscc59
-
MD5
0002455510da982d0474ed8aaf5f7756
-
SHA1
56c9d904830c86e6a830b88d5e3e254fc7c3fb76
-
SHA256
68ff6814dafe9fd6bd25e9b4c2f35417d3b6574ae2fecd069163e1d4c65b5c73
-
SHA512
a45cc05a91c1a3e57d584b5c8cd535fe65773be5e41d85659b0b28d2cc0c0475dfa16500ccbde1d41cebf394f1f07c92ec00816d7229571ffa04f3d49d5805c8
-
SSDEEP
6144:gdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nqx:G8kxNhOZElO5kkWjhD4AF
Malware Config
Targets
-
-
Target
0002455510da982d0474ed8aaf5f7756_JC.exe
-
Size
420KB
-
MD5
0002455510da982d0474ed8aaf5f7756
-
SHA1
56c9d904830c86e6a830b88d5e3e254fc7c3fb76
-
SHA256
68ff6814dafe9fd6bd25e9b4c2f35417d3b6574ae2fecd069163e1d4c65b5c73
-
SHA512
a45cc05a91c1a3e57d584b5c8cd535fe65773be5e41d85659b0b28d2cc0c0475dfa16500ccbde1d41cebf394f1f07c92ec00816d7229571ffa04f3d49d5805c8
-
SSDEEP
6144:gdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nqx:G8kxNhOZElO5kkWjhD4AF
Score7/10-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1