Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

5434d1eae7...a4.exe

windows7-x64

10

5434d1eae7...a4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5434d1eae761aff63d915370a62f0ca4

  • Size

    2.6MB

  • Sample

    231226-e4f25sdgcr

  • MD5

    5434d1eae761aff63d915370a62f0ca4

  • SHA1

    100d09ef2c9234cb66e2f92852fda15b01f783e7

  • SHA256

    7f26224110a22c0c731c678913a228e7e981bfaa3e708d9c1a7477d1d20c396d

  • SHA512

    8a519bc1307fff82b258d7f9da10b1b1fdbeb8a552a2476edfeade22bec7ca127299fb16d82fa25bb195582cf23ebe01283507c75dc7fe6a6d723963b1849833

  • SSDEEP

    49152:bX8ferQZbd2ohLbOnBVj6yBw1z/HJfSoMfjDsgUp8Z6r6:xrQZ1O16y2VpfcbDsgo6

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      5434d1eae761aff63d915370a62f0ca4

    • Size

      2.6MB

    • MD5

      5434d1eae761aff63d915370a62f0ca4

    • SHA1

      100d09ef2c9234cb66e2f92852fda15b01f783e7

    • SHA256

      7f26224110a22c0c731c678913a228e7e981bfaa3e708d9c1a7477d1d20c396d

    • SHA512

      8a519bc1307fff82b258d7f9da10b1b1fdbeb8a552a2476edfeade22bec7ca127299fb16d82fa25bb195582cf23ebe01283507c75dc7fe6a6d723963b1849833

    • SSDEEP

      49152:bX8ferQZbd2ohLbOnBVj6yBw1z/HJfSoMfjDsgUp8Z6r6:xrQZ1O16y2VpfcbDsgo6

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks