Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cbd6b28b0d426de8b90825e47b6b3b39.exe
-
Size
457KB
-
Sample
240102-tkj21sccd5
-
MD5
cbd6b28b0d426de8b90825e47b6b3b39
-
SHA1
ae2072050037d364be5bae9ac61807f39d927c54
-
SHA256
121a7fd4f45290de017aad77c04d1e5872af497ace022468ed4ff93023270e64
-
SHA512
e3d71e9db749ec3df99d189e22fbd1daedc442688a3a4a3cb2e51eb931c086fbda2ea6934ba648eea01f45080515fdb37feb06612e5e9d339f0526dc88fa026d
-
SSDEEP
6144:UZfec9EbXDk6Rk8KF3rG1VVE+Ih/UOPSe570Szp3be/hBS:UZWtI6Rk7bupOB03hA
Static task
static1
Behavioral task
behavioral1
Sample
cbd6b28b0d426de8b90825e47b6b3b39.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
cbd6b28b0d426de8b90825e47b6b3b39.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
cbd6b28b0d426de8b90825e47b6b3b39.exe
-
Size
457KB
-
MD5
cbd6b28b0d426de8b90825e47b6b3b39
-
SHA1
ae2072050037d364be5bae9ac61807f39d927c54
-
SHA256
121a7fd4f45290de017aad77c04d1e5872af497ace022468ed4ff93023270e64
-
SHA512
e3d71e9db749ec3df99d189e22fbd1daedc442688a3a4a3cb2e51eb931c086fbda2ea6934ba648eea01f45080515fdb37feb06612e5e9d339f0526dc88fa026d
-
SSDEEP
6144:UZfec9EbXDk6Rk8KF3rG1VVE+Ih/UOPSe570Szp3be/hBS:UZWtI6Rk7bupOB03hA
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-