Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42a5f085cb986c0b7687afc3b050e168

  • Size

    123KB

  • Sample

    240105-d3qphsaca8

  • MD5

    42a5f085cb986c0b7687afc3b050e168

  • SHA1

    7538dcb9489b66b34ac5fe9d537c4bf0b1550700

  • SHA256

    7e85c66482d4209bbf5706d1e1954549cc45ed4133b992abbcf36c27c1a5b9af

  • SHA512

    4e39bb2e7af019788e5ce78d6d9f92ef6e550ad5312ce8a480f0635430e2affed3af886c6b15b6249f687445622dcad9b95d248d3980d9b5b4d3cb5cd5704ef5

  • SSDEEP

    3072:OeSQ41MZrrOwzrq5Ss9eYfphfFQkUcot3EpeBWLLM8M:OVYrJrOSsRwcpY

Score
8/10
upx

Malware Config

Targets

    • Target

      42a5f085cb986c0b7687afc3b050e168

    • Size

      123KB

    • MD5

      42a5f085cb986c0b7687afc3b050e168

    • SHA1

      7538dcb9489b66b34ac5fe9d537c4bf0b1550700

    • SHA256

      7e85c66482d4209bbf5706d1e1954549cc45ed4133b992abbcf36c27c1a5b9af

    • SHA512

      4e39bb2e7af019788e5ce78d6d9f92ef6e550ad5312ce8a480f0635430e2affed3af886c6b15b6249f687445622dcad9b95d248d3980d9b5b4d3cb5cd5704ef5

    • SSDEEP

      3072:OeSQ41MZrrOwzrq5Ss9eYfphfFQkUcot3EpeBWLLM8M:OVYrJrOSsRwcpY

    Score
    8/10
    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks