Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    02a70d502c907e478563fa6151993a57

  • Size

    3.9MB

  • Sample

    231229-yx4dmshedl

  • MD5

    02a70d502c907e478563fa6151993a57

  • SHA1

    804f5680f9768efd315b795769b20133b6670b37

  • SHA256

    11f54d505aa0acf95198296fd3017bbee5656ff374f96d4a34cec36c84312aab

  • SHA512

    2ceb29ea9c6b0167606eea56d01510003197d97d340b0e6746e44ec5cced3572ecd2ae8b5074de4ae15c1a2fdca4d11eded7caeaf019c33f6354555b5902ca87

  • SSDEEP

    98304:kVXOCAF7o0ydfx9FV8vQquj/UG0cFQlhG:MXOCA60HC/UG08N

Score
9/10

Malware Config

Targets

    • Target

      02a70d502c907e478563fa6151993a57

    • Size

      3.9MB

    • MD5

      02a70d502c907e478563fa6151993a57

    • SHA1

      804f5680f9768efd315b795769b20133b6670b37

    • SHA256

      11f54d505aa0acf95198296fd3017bbee5656ff374f96d4a34cec36c84312aab

    • SHA512

      2ceb29ea9c6b0167606eea56d01510003197d97d340b0e6746e44ec5cced3572ecd2ae8b5074de4ae15c1a2fdca4d11eded7caeaf019c33f6354555b5902ca87

    • SSDEEP

      98304:kVXOCAF7o0ydfx9FV8vQquj/UG0cFQlhG:MXOCA60HC/UG08N

    Score
    9/10
    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks