Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
13caf8984c08823641a96e1d98fa1c49
-
Size
19KB
-
Sample
231224-1ppxdsghan
-
MD5
13caf8984c08823641a96e1d98fa1c49
-
SHA1
4da5636d48de704a12a16aadf3d427c124fd3526
-
SHA256
c63fc58b51d149b13ff9a547ec1fbe1583d332328f4a196aecaea16ac5ac4578
-
SHA512
71e5a896cd33dd567a507f2c45b3380519819faa4d35dd426b6efcb8d065c20576f46395fc144cab55594efec0ea27f52fb4b78371a21e28519a130ea9b3c1fd
-
SSDEEP
384:JPyZNjtU2mfI3ri9Myyv7Wus6rdej1NqzElgEh+:ByZ+fOTzsnKElgY
Malware Config
Targets
-
-
Target
13caf8984c08823641a96e1d98fa1c49
-
Size
19KB
-
MD5
13caf8984c08823641a96e1d98fa1c49
-
SHA1
4da5636d48de704a12a16aadf3d427c124fd3526
-
SHA256
c63fc58b51d149b13ff9a547ec1fbe1583d332328f4a196aecaea16ac5ac4578
-
SHA512
71e5a896cd33dd567a507f2c45b3380519819faa4d35dd426b6efcb8d065c20576f46395fc144cab55594efec0ea27f52fb4b78371a21e28519a130ea9b3c1fd
-
SSDEEP
384:JPyZNjtU2mfI3ri9Myyv7Wus6rdej1NqzElgEh+:ByZ+fOTzsnKElgY
Score10/10-
Modifies firewall policy service
-
Modifies AppInit DLL entries
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1