Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    434868e3e9110f4b1dd8612189482131

  • Size

    97KB

  • Sample

    240105-kyngxsggaj

  • MD5

    434868e3e9110f4b1dd8612189482131

  • SHA1

    f2caed1c8f9b009c7d33c56b0e16ada2a1d50854

  • SHA256

    90ae15f8416ef6d07adff15ed8cb0655eb3efeb345e8099b6848c4acebcbfcee

  • SHA512

    be60746cc82d7f4169b9b80827b554d5a4a9b6ade886950d09885a494014e261e706857da159d620a878d84c504427bf480fbf93c7a28c9940785fe0cebd9bff

  • SSDEEP

    3072:+7m32cZ8UtE2UvMzSKMLTQ7ja8qULZsJg/:+K3fo5yo3Q7ja8qe

Malware Config

Targets

    • Target

      434868e3e9110f4b1dd8612189482131

    • Size

      97KB

    • MD5

      434868e3e9110f4b1dd8612189482131

    • SHA1

      f2caed1c8f9b009c7d33c56b0e16ada2a1d50854

    • SHA256

      90ae15f8416ef6d07adff15ed8cb0655eb3efeb345e8099b6848c4acebcbfcee

    • SHA512

      be60746cc82d7f4169b9b80827b554d5a4a9b6ade886950d09885a494014e261e706857da159d620a878d84c504427bf480fbf93c7a28c9940785fe0cebd9bff

    • SSDEEP

      3072:+7m32cZ8UtE2UvMzSKMLTQ7ja8qULZsJg/:+K3fo5yo3Q7ja8qe

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks