Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

3f97e728df...3e.exe

windows7-x64

10

3f97e728df...3e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3f97e728df4377a78f25014eb4fcac3e

  • Size

    1.0MB

  • Sample

    240104-b9xejahaf5

  • MD5

    3f97e728df4377a78f25014eb4fcac3e

  • SHA1

    f3494fc08c90a83b1c9eaf27df1cd14097ea4b2c

  • SHA256

    90f63ffa83f4f91c969f05495bc4c36ca404cd6af71130e0895b5a5fda5e1e3d

  • SHA512

    28da18924a040d83549a9f35f703d443e8e637c8c82cdfa33eaa10226ece393653e27e9454f7c9afc9a205506934c4038fd1724fff564b189d8bac920ef4a02b

  • SSDEEP

    12288:UZWtI6RkuerQZb+md4w1UAMMkerQZb+md4w1UM:UuhauerQZb+md4wmAMMkerQZb+md4wmM

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      3f97e728df4377a78f25014eb4fcac3e

    • Size

      1.0MB

    • MD5

      3f97e728df4377a78f25014eb4fcac3e

    • SHA1

      f3494fc08c90a83b1c9eaf27df1cd14097ea4b2c

    • SHA256

      90f63ffa83f4f91c969f05495bc4c36ca404cd6af71130e0895b5a5fda5e1e3d

    • SHA512

      28da18924a040d83549a9f35f703d443e8e637c8c82cdfa33eaa10226ece393653e27e9454f7c9afc9a205506934c4038fd1724fff564b189d8bac920ef4a02b

    • SSDEEP

      12288:UZWtI6RkuerQZb+md4w1UAMMkerQZb+md4w1UM:UuhauerQZb+md4wmAMMkerQZb+md4wmM

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks