Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.a938c1c98a658650e39424ad47377390.exe

  • Size

    482KB

  • Sample

    231013-zcmqtsff55

  • MD5

    a938c1c98a658650e39424ad47377390

  • SHA1

    015902babdd4f739ef0543514cea104d27c7b06e

  • SHA256

    1bb4c875976c32ea93335b6f7cd4e25deb766caab753ee6fcc1017e561222787

  • SHA512

    96336ad37ab894211775a6837e21874e1293c1a65ab903b41de45f49388693aec52d6487e8acf73686bb8e9006dd8f4fd5dbd0f9b76d3cbf35a28e23a03131ad

  • SSDEEP

    12288:TsEnJSLrpV6yYP4rbpV6yYPg058KpV6yYP8OThj:TNJSLrW4XWleKW8OThj

Score
10/10

Malware Config

Targets

    • Target

      NEAS.a938c1c98a658650e39424ad47377390.exe

    • Size

      482KB

    • MD5

      a938c1c98a658650e39424ad47377390

    • SHA1

      015902babdd4f739ef0543514cea104d27c7b06e

    • SHA256

      1bb4c875976c32ea93335b6f7cd4e25deb766caab753ee6fcc1017e561222787

    • SHA512

      96336ad37ab894211775a6837e21874e1293c1a65ab903b41de45f49388693aec52d6487e8acf73686bb8e9006dd8f4fd5dbd0f9b76d3cbf35a28e23a03131ad

    • SSDEEP

      12288:TsEnJSLrpV6yYP4rbpV6yYPg058KpV6yYP8OThj:TNJSLrW4XWleKW8OThj

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks