Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0c15c2b40fd0a496a1ca36d3fbb203c1

  • Size

    885KB

  • Sample

    231224-w6rebsgfbm

  • MD5

    0c15c2b40fd0a496a1ca36d3fbb203c1

  • SHA1

    01312c3806c9a9d6aa8be11f196544f4d7afaee3

  • SHA256

    6c78f42692176f97269807e4a685a2c9d5d0a811cfa5ccb65b63e2a6da80d182

  • SHA512

    0764bbb2689e99e28b9983553bd9a8eb6eda97428c161c9fcc7dff49ee130d4eff56769a7c24144ec0fffeedf2f18139f88eb70651fd97f44eb15421401080ad

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjBHANNVAUNE:r5sJo6YrFUiyAak11LtjJ

Score
7/10

Malware Config

Targets

    • Target

      0c15c2b40fd0a496a1ca36d3fbb203c1

    • Size

      885KB

    • MD5

      0c15c2b40fd0a496a1ca36d3fbb203c1

    • SHA1

      01312c3806c9a9d6aa8be11f196544f4d7afaee3

    • SHA256

      6c78f42692176f97269807e4a685a2c9d5d0a811cfa5ccb65b63e2a6da80d182

    • SHA512

      0764bbb2689e99e28b9983553bd9a8eb6eda97428c161c9fcc7dff49ee130d4eff56769a7c24144ec0fffeedf2f18139f88eb70651fd97f44eb15421401080ad

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjBHANNVAUNE:r5sJo6YrFUiyAak11LtjJ

    Score
    7/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks