Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
tuc3.exe
-
Size
6.9MB
-
Sample
231211-rm4hbshacj
-
MD5
bc6a11ebae4eb15aede360e739918171
-
SHA1
c0d0d4d9431ab86f7195fae408fe64b3257d756a
-
SHA256
b477465132c46a8a43fe905db9849e44996cdb8e349e68c92169fcc55aac1495
-
SHA512
ae721a0c45189665643fb40a87957acf229bd8976ebad9877b7db9c0a9f23431f34a40df50c1a102c821969dab978796aa1fdf00d629c86a8c1cc20d95bb65ac
-
SSDEEP
196608:HW0fKLtr95HARqIrmVY8S50UL8Kj8yTwHvWY3Nzj:HtO/hAPmVNyEWeNzj
Static task
static1
Behavioral task
behavioral1
Sample
tuc3.exe
Resource
win7-20231025-en
Behavioral task
behavioral2
Sample
tuc3.exe
Resource
win10v2004-20231130-en
Malware Config
Targets
-
-
Target
tuc3.exe
-
Size
6.9MB
-
MD5
bc6a11ebae4eb15aede360e739918171
-
SHA1
c0d0d4d9431ab86f7195fae408fe64b3257d756a
-
SHA256
b477465132c46a8a43fe905db9849e44996cdb8e349e68c92169fcc55aac1495
-
SHA512
ae721a0c45189665643fb40a87957acf229bd8976ebad9877b7db9c0a9f23431f34a40df50c1a102c821969dab978796aa1fdf00d629c86a8c1cc20d95bb65ac
-
SSDEEP
196608:HW0fKLtr95HARqIrmVY8S50UL8Kj8yTwHvWY3Nzj:HtO/hAPmVNyEWeNzj
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-