Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

643809deec...08.exe

windows7-x64

10

643809deec...08.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    643809deec41a3d2363cde90f9e3c108

  • Size

    1.0MB

  • Sample

    231226-lkb3eahdek

  • MD5

    643809deec41a3d2363cde90f9e3c108

  • SHA1

    18429fa08ffcf7fdd18db93706330f3339ab7a65

  • SHA256

    35a20895e0fca1e1d415556a01208c2e950f167dc30f75504f738cf5a65481c0

  • SHA512

    2bf72c2ac1de3ba711924c187c46b8b29be726e2be70719a74c5cd148835d7073cfffc0fd6fa76045387036d42f505fd1c55849295ee8fbf4da692646d60981f

  • SSDEEP

    24576:UuhaLeZJ8NI8UeZJ8NI8seZJ8NI8UeZJ8NI8zu:bB8p8x8p8zu

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      643809deec41a3d2363cde90f9e3c108

    • Size

      1.0MB

    • MD5

      643809deec41a3d2363cde90f9e3c108

    • SHA1

      18429fa08ffcf7fdd18db93706330f3339ab7a65

    • SHA256

      35a20895e0fca1e1d415556a01208c2e950f167dc30f75504f738cf5a65481c0

    • SHA512

      2bf72c2ac1de3ba711924c187c46b8b29be726e2be70719a74c5cd148835d7073cfffc0fd6fa76045387036d42f505fd1c55849295ee8fbf4da692646d60981f

    • SSDEEP

      24576:UuhaLeZJ8NI8UeZJ8NI8seZJ8NI8UeZJ8NI8zu:bB8p8x8p8zu

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks