Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
16c6a18068bb263ad4bfcf73e2f56a07
-
Size
837KB
-
Sample
231225-mdf88adfbq
-
MD5
16c6a18068bb263ad4bfcf73e2f56a07
-
SHA1
dff7575994aa8e29087de27762bc0a440b7ad21d
-
SHA256
26ef94868657fe364fd2ea43f50c0a36bdd9132dcf7c3f73e520bd4bc6e0c0f3
-
SHA512
fe3804396f8f27706aacabb3c1dc6ed065aaced18b44d671f4b2cf229b57addbf34f9b1dedb65f96378603467a58bb01c57a5e92622440e53e5bfbcbd1424483
-
SSDEEP
12288:UZWtI6RkqOB0heZJys73dOvXDpNjNe8XOwOB0heZJys73dOvXDpNjNe8/:UuhaqOieZJ8NI8jOieZJ8NI8/
Static task
static1
Behavioral task
behavioral1
Sample
16c6a18068bb263ad4bfcf73e2f56a07.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
16c6a18068bb263ad4bfcf73e2f56a07.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
16c6a18068bb263ad4bfcf73e2f56a07
-
Size
837KB
-
MD5
16c6a18068bb263ad4bfcf73e2f56a07
-
SHA1
dff7575994aa8e29087de27762bc0a440b7ad21d
-
SHA256
26ef94868657fe364fd2ea43f50c0a36bdd9132dcf7c3f73e520bd4bc6e0c0f3
-
SHA512
fe3804396f8f27706aacabb3c1dc6ed065aaced18b44d671f4b2cf229b57addbf34f9b1dedb65f96378603467a58bb01c57a5e92622440e53e5bfbcbd1424483
-
SSDEEP
12288:UZWtI6RkqOB0heZJys73dOvXDpNjNe8XOwOB0heZJys73dOvXDpNjNe8/:UuhaqOieZJ8NI8jOieZJ8NI8/
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-