Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5c45bf98ea616600a254e78d95d5b5e5322228e26efa4c649044027f249988c8
-
Size
1.4MB
-
Sample
231104-tvfscace21
-
MD5
e7c1268e01646320fa320d940102c8d2
-
SHA1
1a24304b042143c27f0f63d66b7437e97a90f896
-
SHA256
5c45bf98ea616600a254e78d95d5b5e5322228e26efa4c649044027f249988c8
-
SHA512
58820bd0d78e885c620364f72cec9be3e03289d9e54e9f59e196ee9aaa97774575a3da16ecee570ebfc7da4797606dd819a386a43bae3cfb19eb9ed949c75a29
-
SSDEEP
24576:8yaKjpi1w7WtFJL68e/wK0KIt7oXi5qFRlpsRzNcAR/hAibUSIu7EClzQ81yRMZW:rhjM1xdL6BYhvoXi5qxpsrc22mUpu71E
Malware Config
Targets
-
-
Target
5c45bf98ea616600a254e78d95d5b5e5322228e26efa4c649044027f249988c8
-
Size
1.4MB
-
MD5
e7c1268e01646320fa320d940102c8d2
-
SHA1
1a24304b042143c27f0f63d66b7437e97a90f896
-
SHA256
5c45bf98ea616600a254e78d95d5b5e5322228e26efa4c649044027f249988c8
-
SHA512
58820bd0d78e885c620364f72cec9be3e03289d9e54e9f59e196ee9aaa97774575a3da16ecee570ebfc7da4797606dd819a386a43bae3cfb19eb9ed949c75a29
-
SSDEEP
24576:8yaKjpi1w7WtFJL68e/wK0KIt7oXi5qFRlpsRzNcAR/hAibUSIu7EClzQ81yRMZW:rhjM1xdL6BYhvoXi5qxpsrc22mUpu71E
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Windows security modification
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1