Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3b5925c1ef58f583492f787565f3931e
-
Size
886KB
-
Sample
231231-3kfh9sgafn
-
MD5
3b5925c1ef58f583492f787565f3931e
-
SHA1
6580362697ca8edda8abb35fa3c3f896c215f41d
-
SHA256
9fd78319d8358200dc3f3976549606393c3ac23c750916d441c773a7ac3e83f4
-
SHA512
2f8f0306cdbaf4157194598b766863978b630a04eba0ff0a4c713de46288369b2d41dce0bea67b00c023dd9ccf13ed1bc2ca787ceaeac84157bf9f699c8ab1cd
-
SSDEEP
12288:UZWtI6RkdOB0vOB0vwOjOB0vOB0vdYiZKTKwm:UuhadOWOA9OWOAdETKwm
Malware Config
Targets
-
-
Target
3b5925c1ef58f583492f787565f3931e
-
Size
886KB
-
MD5
3b5925c1ef58f583492f787565f3931e
-
SHA1
6580362697ca8edda8abb35fa3c3f896c215f41d
-
SHA256
9fd78319d8358200dc3f3976549606393c3ac23c750916d441c773a7ac3e83f4
-
SHA512
2f8f0306cdbaf4157194598b766863978b630a04eba0ff0a4c713de46288369b2d41dce0bea67b00c023dd9ccf13ed1bc2ca787ceaeac84157bf9f699c8ab1cd
-
SSDEEP
12288:UZWtI6RkdOB0vOB0vwOjOB0vOB0vdYiZKTKwm:UuhadOWOA9OWOAdETKwm
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-