Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    29aae1645f627d9621f8a0cbcc72876e

  • Size

    140KB

  • Sample

    231231-fyyknsdhh2

  • MD5

    29aae1645f627d9621f8a0cbcc72876e

  • SHA1

    1460b03a748e114f3bfc62eff3290729700901f5

  • SHA256

    fa0d4585aac314d370386f8fdf8eb83dbad25cb22b571dd8a8a9abbd9a635905

  • SHA512

    6b1c785d12b5dad8b01fbb0a4eb1bc5e5c81568a7cb8cdc079192217075be2eeeacb827f9650478370f9b0d706c9fa0b4227d9932d2818ff19403453121434c1

  • SSDEEP

    3072:b1avQJ7ZoKRGXf2N5dqQiY1S7G0xp2coA:b1a4JWpwD1SRxpf

Score
8/10

Malware Config

Targets

    • Target

      29aae1645f627d9621f8a0cbcc72876e

    • Size

      140KB

    • MD5

      29aae1645f627d9621f8a0cbcc72876e

    • SHA1

      1460b03a748e114f3bfc62eff3290729700901f5

    • SHA256

      fa0d4585aac314d370386f8fdf8eb83dbad25cb22b571dd8a8a9abbd9a635905

    • SHA512

      6b1c785d12b5dad8b01fbb0a4eb1bc5e5c81568a7cb8cdc079192217075be2eeeacb827f9650478370f9b0d706c9fa0b4227d9932d2818ff19403453121434c1

    • SSDEEP

      3072:b1avQJ7ZoKRGXf2N5dqQiY1S7G0xp2coA:b1a4JWpwD1SRxpf

    Score
    8/10
    • Modifies Windows Firewall

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks