Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

0d7358e848...b4.exe

windows7-x64

10

0d7358e848...b4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d7358e848b4dc8080fa060eb4b4b9b4

  • Size

    499KB

  • Sample

    231225-hvjnfshggn

  • MD5

    0d7358e848b4dc8080fa060eb4b4b9b4

  • SHA1

    1a3393f77b78c2c3e45f34e59312008d9f019cc4

  • SHA256

    aa1be9f3bdb962e24b9e289323b0867a15be4426108c02d0a762913aef905826

  • SHA512

    5f21a61804a8a76398a26f5ad1a6c375b59834b1bd53c21b86d2289368de901b19d6b88aae563561b9d25fd2a9ef57fb61b8a4990328be6c358809eb03354aa6

  • SSDEEP

    6144:UZfec9EbXDk6RkJK6rG1VVE+Iznmy+g4yuHOdrG1VVE+Iznmy+g4L:UZWtI6RkTu0GOhu0e

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      0d7358e848b4dc8080fa060eb4b4b9b4

    • Size

      499KB

    • MD5

      0d7358e848b4dc8080fa060eb4b4b9b4

    • SHA1

      1a3393f77b78c2c3e45f34e59312008d9f019cc4

    • SHA256

      aa1be9f3bdb962e24b9e289323b0867a15be4426108c02d0a762913aef905826

    • SHA512

      5f21a61804a8a76398a26f5ad1a6c375b59834b1bd53c21b86d2289368de901b19d6b88aae563561b9d25fd2a9ef57fb61b8a4990328be6c358809eb03354aa6

    • SSDEEP

      6144:UZfec9EbXDk6RkJK6rG1VVE+Iznmy+g4yuHOdrG1VVE+Iznmy+g4L:UZWtI6RkTu0GOhu0e

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks