Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16c6a18068bb263ad4bfcf73e2f56a07

  • Size

    837KB

  • Sample

    231225-mdf88adfbq

  • MD5

    16c6a18068bb263ad4bfcf73e2f56a07

  • SHA1

    dff7575994aa8e29087de27762bc0a440b7ad21d

  • SHA256

    26ef94868657fe364fd2ea43f50c0a36bdd9132dcf7c3f73e520bd4bc6e0c0f3

  • SHA512

    fe3804396f8f27706aacabb3c1dc6ed065aaced18b44d671f4b2cf229b57addbf34f9b1dedb65f96378603467a58bb01c57a5e92622440e53e5bfbcbd1424483

  • SSDEEP

    12288:UZWtI6RkqOB0heZJys73dOvXDpNjNe8XOwOB0heZJys73dOvXDpNjNe8/:UuhaqOieZJ8NI8jOieZJ8NI8/

Score
10/10

Malware Config

Targets

    • Target

      16c6a18068bb263ad4bfcf73e2f56a07

    • Size

      837KB

    • MD5

      16c6a18068bb263ad4bfcf73e2f56a07

    • SHA1

      dff7575994aa8e29087de27762bc0a440b7ad21d

    • SHA256

      26ef94868657fe364fd2ea43f50c0a36bdd9132dcf7c3f73e520bd4bc6e0c0f3

    • SHA512

      fe3804396f8f27706aacabb3c1dc6ed065aaced18b44d671f4b2cf229b57addbf34f9b1dedb65f96378603467a58bb01c57a5e92622440e53e5bfbcbd1424483

    • SSDEEP

      12288:UZWtI6RkqOB0heZJys73dOvXDpNjNe8XOwOB0heZJys73dOvXDpNjNe8/:UuhaqOieZJ8NI8jOieZJ8NI8/

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks