Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3f6180e483c3c6b5010350388903a62e

  • Size

    901KB

  • Sample

    240104-ad1xeadbgl

  • MD5

    3f6180e483c3c6b5010350388903a62e

  • SHA1

    96cb99a5bc3ae87ba759c7bb6b384ce6ee1f9ca2

  • SHA256

    326cb2b7e79526b3793bddfd61cb87883a59b931d1ad129b626252b560761e16

  • SHA512

    3749dd7b5dda8380244b86b24e4e31f402303e10ac44cfce875824efe9d55debc7fa38cd118812893f61a0c674aa610c85cb93100cae1c30e14710a0c7c2a3a6

  • SSDEEP

    6144:UZfec9EbXDk6Rk8KdrG1VVE+IVE2EJuHOtrG1VVE+IVE2EJuHOtrG1VVE+IVE2Ec:UZWtI6RkLudwORudwORudwORud0A

Score
10/10

Malware Config

Targets

    • Target

      3f6180e483c3c6b5010350388903a62e

    • Size

      901KB

    • MD5

      3f6180e483c3c6b5010350388903a62e

    • SHA1

      96cb99a5bc3ae87ba759c7bb6b384ce6ee1f9ca2

    • SHA256

      326cb2b7e79526b3793bddfd61cb87883a59b931d1ad129b626252b560761e16

    • SHA512

      3749dd7b5dda8380244b86b24e4e31f402303e10ac44cfce875824efe9d55debc7fa38cd118812893f61a0c674aa610c85cb93100cae1c30e14710a0c7c2a3a6

    • SSDEEP

      6144:UZfec9EbXDk6Rk8KdrG1VVE+IVE2EJuHOtrG1VVE+IVE2EJuHOtrG1VVE+IVE2Ec:UZWtI6RkLudwORudwORudwORud0A

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks