Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    tuc4.exe

  • Size

    7.1MB

  • Sample

    231212-s23d9ahbe7

  • MD5

    dcc8ed90748f7a0362d8225b2fa18d1e

  • SHA1

    fe20c471d7a8c9c027e763786ea2eddb8e0c5c8d

  • SHA256

    c2cbf29a2107362ff4a65c41b27b205fd73fe40959aa630c25a82954c54781b4

  • SHA512

    83523a45e64346625a5092568ff8d20387223c5895b0ef8bf43582f1154ed9fb47a76446fca8a8990f7c27f3b881d1a6d2dd706df4ef36e4d94ce40ec2066610

  • SSDEEP

    196608:oxm5D5YUyRe7VvZKwamjGKAVW7R+gSoASGm8PvsLMwzj:uRepZKwaS79SoASGDP0Qwzj

Score
7/10

Malware Config

Targets

    • Target

      tuc4.exe

    • Size

      7.1MB

    • MD5

      dcc8ed90748f7a0362d8225b2fa18d1e

    • SHA1

      fe20c471d7a8c9c027e763786ea2eddb8e0c5c8d

    • SHA256

      c2cbf29a2107362ff4a65c41b27b205fd73fe40959aa630c25a82954c54781b4

    • SHA512

      83523a45e64346625a5092568ff8d20387223c5895b0ef8bf43582f1154ed9fb47a76446fca8a8990f7c27f3b881d1a6d2dd706df4ef36e4d94ce40ec2066610

    • SSDEEP

      196608:oxm5D5YUyRe7VvZKwamjGKAVW7R+gSoASGm8PvsLMwzj:uRepZKwaS79SoASGDP0Qwzj

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks