Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.fbfb19fac3e122497ad61de373b5ffab.exe

  • Size

    482KB

  • Sample

    231111-nre4raef2z

  • MD5

    fbfb19fac3e122497ad61de373b5ffab

  • SHA1

    aca0ce9e7a0cc42d72df8b93c6ed7deded0fe70e

  • SHA256

    7dc921cef900fc2efaaa0a3148ef394323246641ec31d7bb8afa7734dfa2550c

  • SHA512

    b965d52af8b04c5d234120e4e47fe986af8d97f1f0898af2171583d13b7259415da58237de1ace40d949ae0e41bf00bfcd7db0ce3810a29c5e97ba578dc0e6fe

  • SSDEEP

    6144:BD8+c2Ll+wGXAF2PbgKLVGFM6234lKm3mo8Yvi4KsLTFM6234lKm3:tLLMwGXAF5KLVGFB24lwR45FB24l

Score
10/10

Malware Config

Targets

    • Target

      NEAS.fbfb19fac3e122497ad61de373b5ffab.exe

    • Size

      482KB

    • MD5

      fbfb19fac3e122497ad61de373b5ffab

    • SHA1

      aca0ce9e7a0cc42d72df8b93c6ed7deded0fe70e

    • SHA256

      7dc921cef900fc2efaaa0a3148ef394323246641ec31d7bb8afa7734dfa2550c

    • SHA512

      b965d52af8b04c5d234120e4e47fe986af8d97f1f0898af2171583d13b7259415da58237de1ace40d949ae0e41bf00bfcd7db0ce3810a29c5e97ba578dc0e6fe

    • SSDEEP

      6144:BD8+c2Ll+wGXAF2PbgKLVGFM6234lKm3mo8Yvi4KsLTFM6234lKm3:tLLMwGXAF5KLVGFB24lwR45FB24l

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks