Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f0102f2b6b2231ffe7d301b49a69e21

  • Size

    228KB

  • Sample

    231230-ffaqwsgbbj

  • MD5

    0f0102f2b6b2231ffe7d301b49a69e21

  • SHA1

    18ec0ec2de55e38546b31b3971097b305e23f464

  • SHA256

    20d0658cd9325582bfbc1e67faf8438fe11c5b466e8c1841ec712b7ba5f6b9f7

  • SHA512

    3cca641560bafa5a6be794af24a7aae1dcafdb62732173593ccb3fb8c44fc17efbb564f91f2a457c92964ca8cfcd9a86f62061294e93735a7d289ed7a81033f1

  • SSDEEP

    6144:dpP5KiYCSuSVbTliLDUDNPniCLLiLNiHpTvmlTWsaMemV5Cvb:dpwuoMkBn9LLwcJ7mlTeMeE+

Malware Config

Targets

    • Target

      0f0102f2b6b2231ffe7d301b49a69e21

    • Size

      228KB

    • MD5

      0f0102f2b6b2231ffe7d301b49a69e21

    • SHA1

      18ec0ec2de55e38546b31b3971097b305e23f464

    • SHA256

      20d0658cd9325582bfbc1e67faf8438fe11c5b466e8c1841ec712b7ba5f6b9f7

    • SHA512

      3cca641560bafa5a6be794af24a7aae1dcafdb62732173593ccb3fb8c44fc17efbb564f91f2a457c92964ca8cfcd9a86f62061294e93735a7d289ed7a81033f1

    • SSDEEP

      6144:dpP5KiYCSuSVbTliLDUDNPniCLLiLNiHpTvmlTWsaMemV5Cvb:dpwuoMkBn9LLwcJ7mlTeMeE+

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks