Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    winfsp-1.5.20002.msi

  • Size

    2.5MB

  • Sample

    231222-hg6k3adac2

  • MD5

    1805d856379e6096e411fdc05eee46e2

  • SHA1

    03c6cd4e7bb0104961f9a85db6b889ac44a3f3de

  • SHA256

    0abab684ca302c48afa4abd1572e77af0bac78d57d253381aff4fd8a764f98d2

  • SHA512

    71193146739dec6ee5f4d346f964f219664c12e90de1450fa4eb108cb4c1342aed7f2118d6fe8cd6997d5fcc24e31c63c6e860f5b34885550af4422271c390f6

  • SSDEEP

    49152:6trK7ptfUPMTyrdi/EHuVYXygRbbw7Q5anT:6pItMIEHuVCd1wsgT

Score
6/10

Malware Config

Targets

    • Target

      winfsp-1.5.20002.msi

    • Size

      2.5MB

    • MD5

      1805d856379e6096e411fdc05eee46e2

    • SHA1

      03c6cd4e7bb0104961f9a85db6b889ac44a3f3de

    • SHA256

      0abab684ca302c48afa4abd1572e77af0bac78d57d253381aff4fd8a764f98d2

    • SHA512

      71193146739dec6ee5f4d346f964f219664c12e90de1450fa4eb108cb4c1342aed7f2118d6fe8cd6997d5fcc24e31c63c6e860f5b34885550af4422271c390f6

    • SSDEEP

      49152:6trK7ptfUPMTyrdi/EHuVYXygRbbw7Q5anT:6pItMIEHuVCd1wsgT

    Score
    6/10
    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks