Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3c3aae619df091579b694f036eaf54a3f3a56cf2fbc22d8337c0a1c8ea1a85a8

  • Size

    6.9MB

  • Sample

    231211-ehsttacdbn

  • MD5

    d84061feac85d921ba969778a80b6180

  • SHA1

    23818a31f7a6b4d45475398a30a10d26ed3a1262

  • SHA256

    3c3aae619df091579b694f036eaf54a3f3a56cf2fbc22d8337c0a1c8ea1a85a8

  • SHA512

    ac0dce64e5b0afefd897be374fee97ca84d10c20c389a51ad54ed65aa1902ee3a9d2a4e1ae409b6b912a8d2d29af8c9823fcf98615339a7627303f53102eb080

  • SSDEEP

    98304:v+koiRLFdsODKUdFxQ8k618KzAYYC9z3Bbgtev25o40nsZJjNw5MQNiEU4P5EKHl:2z25G6bV1yYDuZxCWQNhUU2uNzj

Score
7/10

Malware Config

Targets

    • Target

      3c3aae619df091579b694f036eaf54a3f3a56cf2fbc22d8337c0a1c8ea1a85a8

    • Size

      6.9MB

    • MD5

      d84061feac85d921ba969778a80b6180

    • SHA1

      23818a31f7a6b4d45475398a30a10d26ed3a1262

    • SHA256

      3c3aae619df091579b694f036eaf54a3f3a56cf2fbc22d8337c0a1c8ea1a85a8

    • SHA512

      ac0dce64e5b0afefd897be374fee97ca84d10c20c389a51ad54ed65aa1902ee3a9d2a4e1ae409b6b912a8d2d29af8c9823fcf98615339a7627303f53102eb080

    • SSDEEP

      98304:v+koiRLFdsODKUdFxQ8k618KzAYYC9z3Bbgtev25o40nsZJjNw5MQNiEU4P5EKHl:2z25G6bV1yYDuZxCWQNhUU2uNzj

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks