Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
76718972a1c9983da79829d936ae4652
-
Size
585KB
-
Sample
231226-r3l8zsgden
-
MD5
76718972a1c9983da79829d936ae4652
-
SHA1
2bcea2922323b2012c40978402e9f3fb3fe9fdb2
-
SHA256
b111ebeea6ee904a67982e7fca339c8017482b555e1819a7eddf00a88b9da4ae
-
SHA512
acfd2f095283be9999a9325de132fef59d5982ea6a55a1ca9affa0d32070e73962077779cb489b467505f3763db28cd2ee9ba9dd6767a26cd312448c3f11af76
-
SSDEEP
12288:8TiHFgvJN0bbqMffOzZYpfKPh9KVc1BvpWusp9UIWFaOWQ/yird:CiSvJKfOVWGK+PvpWuiWIpO
Behavioral task
behavioral1
Sample
76718972a1c9983da79829d936ae4652.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
76718972a1c9983da79829d936ae4652.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
76718972a1c9983da79829d936ae4652
-
Size
585KB
-
MD5
76718972a1c9983da79829d936ae4652
-
SHA1
2bcea2922323b2012c40978402e9f3fb3fe9fdb2
-
SHA256
b111ebeea6ee904a67982e7fca339c8017482b555e1819a7eddf00a88b9da4ae
-
SHA512
acfd2f095283be9999a9325de132fef59d5982ea6a55a1ca9affa0d32070e73962077779cb489b467505f3763db28cd2ee9ba9dd6767a26cd312448c3f11af76
-
SSDEEP
12288:8TiHFgvJN0bbqMffOzZYpfKPh9KVc1BvpWusp9UIWFaOWQ/yird:CiSvJKfOVWGK+PvpWuiWIpO
Score10/10-
Modifies WinLogon for persistence
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Winlogon Helper DLL
1