Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7

NEAS.7d652...b0.exe

windows7-x64

10

NEAS.7d652...b0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.7d652a1374b838d985eabef0e78199b0.exe

  • Size

    19KB

  • Sample

    231104-jz5bdsff45

  • MD5

    7d652a1374b838d985eabef0e78199b0

  • SHA1

    19c61eaf6d9cb56aea25bc989287a4f8d43b8599

  • SHA256

    252cfd35b7303b91369dd00c1a0d5ab8b4cf208018e40d14656e3069c8e464bc

  • SHA512

    c30cee59a39185c1f88dab26fbed8f9cd8f9a73b5c27aef0cb03561747213ace07e6a319204366d400caee5108b2366e4d4b4789f4ea1339222e0b0a8db34ed3

  • SSDEEP

    384:UBWoC5GDr6wc/w3HgM6vDUTAXBGCVf4WVlFvXK0:rRkiLw3HsDSARGG/60

Score
10/10
evasionpersistencetrojanupx

Malware Config

Targets

    • Target

      NEAS.7d652a1374b838d985eabef0e78199b0.exe

    • Size

      19KB

    • MD5

      7d652a1374b838d985eabef0e78199b0

    • SHA1

      19c61eaf6d9cb56aea25bc989287a4f8d43b8599

    • SHA256

      252cfd35b7303b91369dd00c1a0d5ab8b4cf208018e40d14656e3069c8e464bc

    • SHA512

      c30cee59a39185c1f88dab26fbed8f9cd8f9a73b5c27aef0cb03561747213ace07e6a319204366d400caee5108b2366e4d4b4789f4ea1339222e0b0a8db34ed3

    • SSDEEP

      384:UBWoC5GDr6wc/w3HgM6vDUTAXBGCVf4WVlFvXK0:rRkiLw3HsDSARGG/60

    Score
    10/10
    evasionpersistencetrojanupx

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks