Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    02e5afbfe7cf9338cd2ca3680ad19489

  • Size

    91KB

  • Sample

    231229-y4fwxseah5

  • MD5

    02e5afbfe7cf9338cd2ca3680ad19489

  • SHA1

    f0bbc2efc11c9121c9926010d9bcaf01319b6044

  • SHA256

    109b3e3dac155ed27e2b79b9f9f1fce6732d5f17177676ef79590b1e89a9671e

  • SHA512

    0e5fc2edfeabe3fb9ef6fd91a08b93dee93d174b8eed95d6be93c4c8020d7383f80c953210e4880c468d22cdd2abec710698a62773e7d73bf8373636ca20be3c

  • SSDEEP

    1536:MSLuq39X6jiYbrVjxwYxFxyl5rUW/kdvqT1+vp7KHRV86ElZlbC2AX4i:MEuI6jiO7wYxnyl6ckCJe6ElZdoB

Malware Config

Targets

    • Target

      02e5afbfe7cf9338cd2ca3680ad19489

    • Size

      91KB

    • MD5

      02e5afbfe7cf9338cd2ca3680ad19489

    • SHA1

      f0bbc2efc11c9121c9926010d9bcaf01319b6044

    • SHA256

      109b3e3dac155ed27e2b79b9f9f1fce6732d5f17177676ef79590b1e89a9671e

    • SHA512

      0e5fc2edfeabe3fb9ef6fd91a08b93dee93d174b8eed95d6be93c4c8020d7383f80c953210e4880c468d22cdd2abec710698a62773e7d73bf8373636ca20be3c

    • SSDEEP

      1536:MSLuq39X6jiYbrVjxwYxFxyl5rUW/kdvqT1+vp7KHRV86ElZlbC2AX4i:MEuI6jiO7wYxnyl6ckCJe6ElZdoB

    • Sets file execution options in registry

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks for any installed AV software in registry

    • Checks whether UAC is enabled

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks