Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    tuc5.exe

  • Size

    7.5MB

  • Sample

    231211-xd2v2aefdk

  • MD5

    7e4edc7bfc3e78389f6ec517f55b56a9

  • SHA1

    9b267a42749d9118e9f95aae9a908e3b9d0d88dc

  • SHA256

    846d963b3be07336806e9a35ec551588e1cc8eac3cc74fffedb2b16635ab5fe3

  • SHA512

    cd051c58d5bd118eb7f071315660eead841ba3070731e54647f4358bd815c49d1f2ac1178fdf39e3719657b058719be25cca27791086eb5e76d5bd1f9013ac29

  • SSDEEP

    196608:DO78pimeIjZMmsj7bXzjl3iT1A9SG7ul2xdVNWiYmJE6RI6zj:a78pimNjMDzjl3dQAdVN1YyRPzj

Score
7/10

Malware Config

Targets

    • Target

      tuc5.exe

    • Size

      7.5MB

    • MD5

      7e4edc7bfc3e78389f6ec517f55b56a9

    • SHA1

      9b267a42749d9118e9f95aae9a908e3b9d0d88dc

    • SHA256

      846d963b3be07336806e9a35ec551588e1cc8eac3cc74fffedb2b16635ab5fe3

    • SHA512

      cd051c58d5bd118eb7f071315660eead841ba3070731e54647f4358bd815c49d1f2ac1178fdf39e3719657b058719be25cca27791086eb5e76d5bd1f9013ac29

    • SSDEEP

      196608:DO78pimeIjZMmsj7bXzjl3iT1A9SG7ul2xdVNWiYmJE6RI6zj:a78pimNjMDzjl3dQAdVN1YyRPzj

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks