Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    07ce970f7c584e9ece86a07df4198ca4

  • Size

    1.1MB

  • Sample

    231229-313czafba8

  • MD5

    07ce970f7c584e9ece86a07df4198ca4

  • SHA1

    8e63435eea731fb5191896aa17f91d0ff4110a8f

  • SHA256

    c28d1138b14e58c750896882c2832e4f2f7594c554eca20dc5fc454082fe1fa3

  • SHA512

    a641279c9f85499d43b0dfabb739fa216086fda26cdfcc330990bf217ffb18c862910cf05066456de935988974c9c74e5e241021eaf1e0d60c51c3f01b8eac63

  • SSDEEP

    24576:HAVgakfgrhMYPLgiRDo4DH+thd+hNd+37VbQtQCgwe/Qqs4ADmiff:HAtkYriH4Sl+hf+37VbQxJqs4Ais

Malware Config

Targets

    • Target

      07ce970f7c584e9ece86a07df4198ca4

    • Size

      1.1MB

    • MD5

      07ce970f7c584e9ece86a07df4198ca4

    • SHA1

      8e63435eea731fb5191896aa17f91d0ff4110a8f

    • SHA256

      c28d1138b14e58c750896882c2832e4f2f7594c554eca20dc5fc454082fe1fa3

    • SHA512

      a641279c9f85499d43b0dfabb739fa216086fda26cdfcc330990bf217ffb18c862910cf05066456de935988974c9c74e5e241021eaf1e0d60c51c3f01b8eac63

    • SSDEEP

      24576:HAVgakfgrhMYPLgiRDo4DH+thd+hNd+37VbQtQCgwe/Qqs4ADmiff:HAtkYriH4Sl+hf+37VbQxJqs4Ais

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks