Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
29aae1645f627d9621f8a0cbcc72876e
-
Size
140KB
-
Sample
231231-fyyknsdhh2
-
MD5
29aae1645f627d9621f8a0cbcc72876e
-
SHA1
1460b03a748e114f3bfc62eff3290729700901f5
-
SHA256
fa0d4585aac314d370386f8fdf8eb83dbad25cb22b571dd8a8a9abbd9a635905
-
SHA512
6b1c785d12b5dad8b01fbb0a4eb1bc5e5c81568a7cb8cdc079192217075be2eeeacb827f9650478370f9b0d706c9fa0b4227d9932d2818ff19403453121434c1
-
SSDEEP
3072:b1avQJ7ZoKRGXf2N5dqQiY1S7G0xp2coA:b1a4JWpwD1SRxpf
Static task
static1
Behavioral task
behavioral1
Sample
29aae1645f627d9621f8a0cbcc72876e.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
29aae1645f627d9621f8a0cbcc72876e.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
29aae1645f627d9621f8a0cbcc72876e
-
Size
140KB
-
MD5
29aae1645f627d9621f8a0cbcc72876e
-
SHA1
1460b03a748e114f3bfc62eff3290729700901f5
-
SHA256
fa0d4585aac314d370386f8fdf8eb83dbad25cb22b571dd8a8a9abbd9a635905
-
SHA512
6b1c785d12b5dad8b01fbb0a4eb1bc5e5c81568a7cb8cdc079192217075be2eeeacb827f9650478370f9b0d706c9fa0b4227d9932d2818ff19403453121434c1
-
SSDEEP
3072:b1avQJ7ZoKRGXf2N5dqQiY1S7G0xp2coA:b1a4JWpwD1SRxpf
Score8/10-
Modifies Windows Firewall
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1