Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e281f1abf299b1d2c75a86a612770d9552c361dc3cb590ae5e2ac47f4d1aaa3a

  • Size

    5.6MB

  • Sample

    231113-kevf5abe8y

  • MD5

    8bb770b300801f91bc5c68d4e783881d

  • SHA1

    f6aceee61bedc6f273c89a224656df1e9dff8434

  • SHA256

    e281f1abf299b1d2c75a86a612770d9552c361dc3cb590ae5e2ac47f4d1aaa3a

  • SHA512

    22c5790abfa163a732dc8d078e22a26af0d24bab98d5383bf24c764b620c8ca407a842617a3783faf244ce3e4d8776f8429e62777d5d6b67a2bb901aa7b936d2

  • SSDEEP

    98304:biRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:+Rm1syxacY48eda2TMpQdZ9nc+fyhNjG

Score
7/10

Malware Config

Targets

    • Target

      e281f1abf299b1d2c75a86a612770d9552c361dc3cb590ae5e2ac47f4d1aaa3a

    • Size

      5.6MB

    • MD5

      8bb770b300801f91bc5c68d4e783881d

    • SHA1

      f6aceee61bedc6f273c89a224656df1e9dff8434

    • SHA256

      e281f1abf299b1d2c75a86a612770d9552c361dc3cb590ae5e2ac47f4d1aaa3a

    • SHA512

      22c5790abfa163a732dc8d078e22a26af0d24bab98d5383bf24c764b620c8ca407a842617a3783faf244ce3e4d8776f8429e62777d5d6b67a2bb901aa7b936d2

    • SSDEEP

      98304:biRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:+Rm1syxacY48eda2TMpQdZ9nc+fyhNjG

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks