Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    77bc02e8c565cee1288a6f918711136c

  • Size

    28KB

  • Sample

    231226-sgccbscca9

  • MD5

    77bc02e8c565cee1288a6f918711136c

  • SHA1

    50283f269435ed351cd9a04e605ed607617dc744

  • SHA256

    cf239f78ac1b7e72e301dd8f0482866e8ff664bc4c9ad7f78648b466dbeef9ff

  • SHA512

    4b3cb9347d909c2cee960d4726a4800f556f9ae22c610a15fb86febe69281b7c835376e551965fc6d55fbed6a0c9ce0ba5761d62077e4bf78f19106919da344c

  • SSDEEP

    768:5CUb3foaqTPawJG1VdPdEPcurxbjAmKmrV:QUL9qba+GvdPdEUWxbkmZV

Score
7/10
upx

Malware Config

Targets

    • Target

      77bc02e8c565cee1288a6f918711136c

    • Size

      28KB

    • MD5

      77bc02e8c565cee1288a6f918711136c

    • SHA1

      50283f269435ed351cd9a04e605ed607617dc744

    • SHA256

      cf239f78ac1b7e72e301dd8f0482866e8ff664bc4c9ad7f78648b466dbeef9ff

    • SHA512

      4b3cb9347d909c2cee960d4726a4800f556f9ae22c610a15fb86febe69281b7c835376e551965fc6d55fbed6a0c9ce0ba5761d62077e4bf78f19106919da344c

    • SSDEEP

      768:5CUb3foaqTPawJG1VdPdEPcurxbjAmKmrV:QUL9qba+GvdPdEUWxbkmZV

    Score
    7/10
    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks