Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

5c94acb886...84.exe

windows7-x64

10

5c94acb886...84.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c94acb886026b869992ed0a93b96384

  • Size

    4.9MB

  • Sample

    231226-jbjd1sddd3

  • MD5

    5c94acb886026b869992ed0a93b96384

  • SHA1

    f0f907374b41f3ca73950721fa73dc55dc79b5ac

  • SHA256

    de7067ff69251eb8064701249f7cf8dccfb4e9f2fb85d8e291bfe322beaf50f5

  • SHA512

    4c6d39ae1e221b5dd51955feb6038cd80b88f3e8db768fda36dcd7b07f1425a8830373c89d04d32bebbb9a8e1603227325921e6d7f3b3ad99f6c2cb3eb54a3aa

  • SSDEEP

    98304:hrQZGrQZ/rQZGrQZ/rQZGrQZ/rQZGrQZ/rQZGrQZ5:hr2Gr2/r2Gr2/r2Gr2/r2Gr2/r2Gr25

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      5c94acb886026b869992ed0a93b96384

    • Size

      4.9MB

    • MD5

      5c94acb886026b869992ed0a93b96384

    • SHA1

      f0f907374b41f3ca73950721fa73dc55dc79b5ac

    • SHA256

      de7067ff69251eb8064701249f7cf8dccfb4e9f2fb85d8e291bfe322beaf50f5

    • SHA512

      4c6d39ae1e221b5dd51955feb6038cd80b88f3e8db768fda36dcd7b07f1425a8830373c89d04d32bebbb9a8e1603227325921e6d7f3b3ad99f6c2cb3eb54a3aa

    • SSDEEP

      98304:hrQZGrQZ/rQZGrQZ/rQZGrQZ/rQZGrQZ/rQZGrQZ5:hr2Gr2/r2Gr2/r2Gr2/r2Gr2/r2Gr25

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks