Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    tuc7.exe

  • Size

    7.0MB

  • Sample

    231212-wa58lshceq

  • MD5

    5285a6682478becc95f18342b2904657

  • SHA1

    5a54bf2ff799b64b065d163b264179f67455243e

  • SHA256

    30889f13cb68d07d870acab2076875e2255a1775d13c055c18681081f8c4e930

  • SHA512

    df33add60987191cc52b55808cad675605980284a7ad69a5fbe082a02b66b03e230e76895548ea5f574d54f97bc765570b9694a286fdbe5af1093775f0c98886

  • SSDEEP

    196608:8xm5Z7xPjWtYOkdHWd1V3GaO4TwWHvzASW8P7Bzj:z7RjWtfj95dLASWyzj

Score
7/10

Malware Config

Targets

    • Target

      tuc7.exe

    • Size

      7.0MB

    • MD5

      5285a6682478becc95f18342b2904657

    • SHA1

      5a54bf2ff799b64b065d163b264179f67455243e

    • SHA256

      30889f13cb68d07d870acab2076875e2255a1775d13c055c18681081f8c4e930

    • SHA512

      df33add60987191cc52b55808cad675605980284a7ad69a5fbe082a02b66b03e230e76895548ea5f574d54f97bc765570b9694a286fdbe5af1093775f0c98886

    • SSDEEP

      196608:8xm5Z7xPjWtYOkdHWd1V3GaO4TwWHvzASW8P7Bzj:z7RjWtfj95dLASWyzj

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks