Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1ca21630212d52c15ff9261799b3e74a

  • Size

    228KB

  • Sample

    231225-n6fntsaaa6

  • MD5

    1ca21630212d52c15ff9261799b3e74a

  • SHA1

    d2f42b687cf6e8fdd815c0fe8dc47e0701b4152f

  • SHA256

    470fd3e08686786e52808af269c13c117eafc809afc2b03ca0376ab6951b76bb

  • SHA512

    f34e2014b3c55a11056c0d2259203a4cb7e74535fc975da0ba8e33ca43ee90ba7fbb8ff4917415b72040e03838c7e7853c66081b4b4a803154ac36204479ab1f

  • SSDEEP

    6144:jmd3PFKs7aFwKWwalhrEqxF6snji81RUinKZHg/aS8:jmpPhAmZIH+ax

Score
10/10

Malware Config

Targets

    • Target

      1ca21630212d52c15ff9261799b3e74a

    • Size

      228KB

    • MD5

      1ca21630212d52c15ff9261799b3e74a

    • SHA1

      d2f42b687cf6e8fdd815c0fe8dc47e0701b4152f

    • SHA256

      470fd3e08686786e52808af269c13c117eafc809afc2b03ca0376ab6951b76bb

    • SHA512

      f34e2014b3c55a11056c0d2259203a4cb7e74535fc975da0ba8e33ca43ee90ba7fbb8ff4917415b72040e03838c7e7853c66081b4b4a803154ac36204479ab1f

    • SSDEEP

      6144:jmd3PFKs7aFwKWwalhrEqxF6snji81RUinKZHg/aS8:jmpPhAmZIH+ax

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks