Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2405261f7308bf4365ae5b96c4e208ab

  • Size

    236KB

  • Sample

    231225-rctkdaehfm

  • MD5

    2405261f7308bf4365ae5b96c4e208ab

  • SHA1

    2b41672e4552f719939c7464ccc5c81f3d20bea2

  • SHA256

    47bd68ea7c43931afdbcb84ace47674d81c0d1181368703701d91b2b4d385942

  • SHA512

    06328be435bbce53f5e6b4ff025d57b8e2f3d3605c0d412d7af20176b4f5b06d406b5a5c951155abb82bcbdb9b68160652da3ca91f81652bdf3f98dff97deb6b

  • SSDEEP

    6144:BH53M+AiZE8EJrKZzREeCy1cMBOtPOSnRo5RFpxK6:v9XEJrKEJMI1nRCpo6

Malware Config

Targets

    • Target

      2405261f7308bf4365ae5b96c4e208ab

    • Size

      236KB

    • MD5

      2405261f7308bf4365ae5b96c4e208ab

    • SHA1

      2b41672e4552f719939c7464ccc5c81f3d20bea2

    • SHA256

      47bd68ea7c43931afdbcb84ace47674d81c0d1181368703701d91b2b4d385942

    • SHA512

      06328be435bbce53f5e6b4ff025d57b8e2f3d3605c0d412d7af20176b4f5b06d406b5a5c951155abb82bcbdb9b68160652da3ca91f81652bdf3f98dff97deb6b

    • SSDEEP

      6144:BH53M+AiZE8EJrKZzREeCy1cMBOtPOSnRo5RFpxK6:v9XEJrKEJMI1nRCpo6

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks