Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

14ebee518e...a1.exe

windows7-x64

10

14ebee518e...a1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    14ebee518e438d86b90103915b32b3a1

  • Size

    485KB

  • Sample

    231225-lp174aahe2

  • MD5

    14ebee518e438d86b90103915b32b3a1

  • SHA1

    380416d9b6c74ebea889bf0fe541986f4e9a0f7d

  • SHA256

    8a73a4687b4565d370b77ef40569bf65126a2a91288d0cfabb4b2a5e267767a3

  • SHA512

    da26cf7f98d3a9c94b726c0415eda1e6c5ecd3e6f88be73005737d907a7365fe29eb0666a33cb669380808dc638f12988aed3616560973ecc1b278f6b25f2f21

  • SSDEEP

    12288:UZWtI6RkEM2eZJys73dOvXDpNjNe8Nunut:UuhaEM2eZJ8NI8f

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      14ebee518e438d86b90103915b32b3a1

    • Size

      485KB

    • MD5

      14ebee518e438d86b90103915b32b3a1

    • SHA1

      380416d9b6c74ebea889bf0fe541986f4e9a0f7d

    • SHA256

      8a73a4687b4565d370b77ef40569bf65126a2a91288d0cfabb4b2a5e267767a3

    • SHA512

      da26cf7f98d3a9c94b726c0415eda1e6c5ecd3e6f88be73005737d907a7365fe29eb0666a33cb669380808dc638f12988aed3616560973ecc1b278f6b25f2f21

    • SSDEEP

      12288:UZWtI6RkEM2eZJys73dOvXDpNjNe8Nunut:UuhaEM2eZJ8NI8f

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks