Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    tuc4.exe

  • Size

    6.9MB

  • Sample

    231211-sskg3saefr

  • MD5

    ab5ad39df89fbe36d1576f5390b91ae8

  • SHA1

    447e7bbd0e6a7ebfda7cf97638a8e9f619eb7aed

  • SHA256

    df1ae754a17b41be925a9135f43e53225687b04210872d4919305460dc6c52b1

  • SHA512

    fda8d229f686529bb3761b5e3263535b94d8ff548730c315d319947d24bfb717994dc37c66f64159aae6a545b8763f339b73d54a49734779656784f18143586b

  • SSDEEP

    196608:yDoG3bFqjpLC0TSMLsn33HR83v9i8l7INzj:yDyNLCWZ2HS9iQ7INzj

Score
7/10

Malware Config

Targets

    • Target

      tuc4.exe

    • Size

      6.9MB

    • MD5

      ab5ad39df89fbe36d1576f5390b91ae8

    • SHA1

      447e7bbd0e6a7ebfda7cf97638a8e9f619eb7aed

    • SHA256

      df1ae754a17b41be925a9135f43e53225687b04210872d4919305460dc6c52b1

    • SHA512

      fda8d229f686529bb3761b5e3263535b94d8ff548730c315d319947d24bfb717994dc37c66f64159aae6a545b8763f339b73d54a49734779656784f18143586b

    • SSDEEP

      196608:yDoG3bFqjpLC0TSMLsn33HR83v9i8l7INzj:yDyNLCWZ2HS9iQ7INzj

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks