Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
56c8ddd07545efef53fb690b68211f4f
-
Size
82KB
-
Sample
231226-fs21xaabgq
-
MD5
56c8ddd07545efef53fb690b68211f4f
-
SHA1
deaad8c777f4f54459d15e8e2bd2a260258b1df3
-
SHA256
c62e53f2bfcb2e17d5e80112e54f5c923120b258b5e0546073e96d096fae259b
-
SHA512
a4dd882ccc0b747da51f0ac6d7acf8620b872e522e7c34a9fc650604ea88fab532c9beec0e0ee426b08dab1cf525d99a055b9136d6f4ae4f7fffd4f3add84693
-
SSDEEP
1536:0h3oDFpr18upjOWOHQRTaTalf34DanAWtHDu:09AF118upKCBaTa94Dan1
Malware Config
Targets
-
-
Target
56c8ddd07545efef53fb690b68211f4f
-
Size
82KB
-
MD5
56c8ddd07545efef53fb690b68211f4f
-
SHA1
deaad8c777f4f54459d15e8e2bd2a260258b1df3
-
SHA256
c62e53f2bfcb2e17d5e80112e54f5c923120b258b5e0546073e96d096fae259b
-
SHA512
a4dd882ccc0b747da51f0ac6d7acf8620b872e522e7c34a9fc650604ea88fab532c9beec0e0ee426b08dab1cf525d99a055b9136d6f4ae4f7fffd4f3add84693
-
SSDEEP
1536:0h3oDFpr18upjOWOHQRTaTalf34DanAWtHDu:09AF118upKCBaTa94Dan1
Score8/10-
Drops file in Drivers directory
-
Sets file execution options in registry
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-