Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

cbd6b28b0d...39.exe

windows7-x64

10

cbd6b28b0d...39.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cbd6b28b0d426de8b90825e47b6b3b39.exe

  • Size

    457KB

  • Sample

    240102-tkj21sccd5

  • MD5

    cbd6b28b0d426de8b90825e47b6b3b39

  • SHA1

    ae2072050037d364be5bae9ac61807f39d927c54

  • SHA256

    121a7fd4f45290de017aad77c04d1e5872af497ace022468ed4ff93023270e64

  • SHA512

    e3d71e9db749ec3df99d189e22fbd1daedc442688a3a4a3cb2e51eb931c086fbda2ea6934ba648eea01f45080515fdb37feb06612e5e9d339f0526dc88fa026d

  • SSDEEP

    6144:UZfec9EbXDk6Rk8KF3rG1VVE+Ih/UOPSe570Szp3be/hBS:UZWtI6Rk7bupOB03hA

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      cbd6b28b0d426de8b90825e47b6b3b39.exe

    • Size

      457KB

    • MD5

      cbd6b28b0d426de8b90825e47b6b3b39

    • SHA1

      ae2072050037d364be5bae9ac61807f39d927c54

    • SHA256

      121a7fd4f45290de017aad77c04d1e5872af497ace022468ed4ff93023270e64

    • SHA512

      e3d71e9db749ec3df99d189e22fbd1daedc442688a3a4a3cb2e51eb931c086fbda2ea6934ba648eea01f45080515fdb37feb06612e5e9d339f0526dc88fa026d

    • SSDEEP

      6144:UZfec9EbXDk6Rk8KF3rG1VVE+Ih/UOPSe570Szp3be/hBS:UZWtI6Rk7bupOB03hA

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks