Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

64d986cea5...23.exe

windows7-x64

10

64d986cea5...23.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    64d986cea5eb710723fb50112fbb3fa425fb70147834b30f3b101110d0f3b123

  • Size

    1.1MB

  • Sample

    231011-fm4ybadb63

  • MD5

    d326c267fdd172f491902e9aaeaa6273

  • SHA1

    78ba3cca60f36512103d25b6e9ee418be9088b71

  • SHA256

    64d986cea5eb710723fb50112fbb3fa425fb70147834b30f3b101110d0f3b123

  • SHA512

    44b4bb5a317c5dc890820b7b4a314414db288cfc7d18c58410e172cc578d6f2618e823e252b241ef1c639c33968e8c108ff7df1361db0a09bf90c4d10d8c8cb9

  • SSDEEP

    24576:Wyw061GD5kFpUNdOBcqEmkapAjwhF+GOznHfi:laGDEpUfkINjwhFHc/

Score
10/10
healerdropperevasionpersistencetrojan

Malware Config

Targets

    • Target

      64d986cea5eb710723fb50112fbb3fa425fb70147834b30f3b101110d0f3b123

    • Size

      1.1MB

    • MD5

      d326c267fdd172f491902e9aaeaa6273

    • SHA1

      78ba3cca60f36512103d25b6e9ee418be9088b71

    • SHA256

      64d986cea5eb710723fb50112fbb3fa425fb70147834b30f3b101110d0f3b123

    • SHA512

      44b4bb5a317c5dc890820b7b4a314414db288cfc7d18c58410e172cc578d6f2618e823e252b241ef1c639c33968e8c108ff7df1361db0a09bf90c4d10d8c8cb9

    • SSDEEP

      24576:Wyw061GD5kFpUNdOBcqEmkapAjwhF+GOznHfi:laGDEpUfkINjwhFHc/

    Score
    10/10
    healerdropperevasionpersistencetrojan

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

      dropperhealer

    • Modifies Windows Defender Real-time Protection settings

      evasiontrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks