Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3b5925c1ef58f583492f787565f3931e

  • Size

    886KB

  • Sample

    231231-3kfh9sgafn

  • MD5

    3b5925c1ef58f583492f787565f3931e

  • SHA1

    6580362697ca8edda8abb35fa3c3f896c215f41d

  • SHA256

    9fd78319d8358200dc3f3976549606393c3ac23c750916d441c773a7ac3e83f4

  • SHA512

    2f8f0306cdbaf4157194598b766863978b630a04eba0ff0a4c713de46288369b2d41dce0bea67b00c023dd9ccf13ed1bc2ca787ceaeac84157bf9f699c8ab1cd

  • SSDEEP

    12288:UZWtI6RkdOB0vOB0vwOjOB0vOB0vdYiZKTKwm:UuhadOWOA9OWOAdETKwm

Score
10/10

Malware Config

Targets

    • Target

      3b5925c1ef58f583492f787565f3931e

    • Size

      886KB

    • MD5

      3b5925c1ef58f583492f787565f3931e

    • SHA1

      6580362697ca8edda8abb35fa3c3f896c215f41d

    • SHA256

      9fd78319d8358200dc3f3976549606393c3ac23c750916d441c773a7ac3e83f4

    • SHA512

      2f8f0306cdbaf4157194598b766863978b630a04eba0ff0a4c713de46288369b2d41dce0bea67b00c023dd9ccf13ed1bc2ca787ceaeac84157bf9f699c8ab1cd

    • SSDEEP

      12288:UZWtI6RkdOB0vOB0vwOjOB0vOB0vdYiZKTKwm:UuhadOWOA9OWOAdETKwm

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks