Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5b8983f9e4d78fcf684f0aaa72e1698b4b0dc2181ae5c4b9b44f5d64eef0d090

  • Size

    5.6MB

  • Sample

    231104-wkcdaafa33

  • MD5

    25b965f918126ead925f90985f914a68

  • SHA1

    9fd7dce7d4c68e1eeb6ddf7f528572dec713df44

  • SHA256

    5b8983f9e4d78fcf684f0aaa72e1698b4b0dc2181ae5c4b9b44f5d64eef0d090

  • SHA512

    117381d3fc7341c6b8d54b24bcb5d1e3f69ac4b53e9259edae642c0a5348d6fb37bbb7b11e940c1db33c995f4235ad2b62df855a91409064354ac225eff1ef09

  • SSDEEP

    98304:6iRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:vRm1syxacY48eda2TMpQdZ9nc+fyhNjG

Score
7/10

Malware Config

Targets

    • Target

      5b8983f9e4d78fcf684f0aaa72e1698b4b0dc2181ae5c4b9b44f5d64eef0d090

    • Size

      5.6MB

    • MD5

      25b965f918126ead925f90985f914a68

    • SHA1

      9fd7dce7d4c68e1eeb6ddf7f528572dec713df44

    • SHA256

      5b8983f9e4d78fcf684f0aaa72e1698b4b0dc2181ae5c4b9b44f5d64eef0d090

    • SHA512

      117381d3fc7341c6b8d54b24bcb5d1e3f69ac4b53e9259edae642c0a5348d6fb37bbb7b11e940c1db33c995f4235ad2b62df855a91409064354ac225eff1ef09

    • SSDEEP

      98304:6iRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:vRm1syxacY48eda2TMpQdZ9nc+fyhNjG

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks