Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    450ddf88ba4c4be9473d34e0c478293f

  • Size

    505KB

  • Sample

    240106-c36kasfafm

  • MD5

    450ddf88ba4c4be9473d34e0c478293f

  • SHA1

    b9dea016f65ccad2f9e442a8987dfc512b05c856

  • SHA256

    3b381e14ab0778df19750b05485fcd7d7194d8f700316749e12c53c4f7426272

  • SHA512

    fa638897b8e7aa4868fbb5142003f25cb74871555b96a65b95fe338acc4735507c0bbd4cbcf68239141be8059b2990b9bf312f75f402ac6caf2c7d762aa6e92e

  • SSDEEP

    12288:mYWwSGAtqGnKa4yitPi9OnlOCwA+GSs3C/NakvROdZ:1rSGA8GelY9OlOLYSs3C/N/5OdZ

Score
10/10

Malware Config

Targets

    • Target

      450ddf88ba4c4be9473d34e0c478293f

    • Size

      505KB

    • MD5

      450ddf88ba4c4be9473d34e0c478293f

    • SHA1

      b9dea016f65ccad2f9e442a8987dfc512b05c856

    • SHA256

      3b381e14ab0778df19750b05485fcd7d7194d8f700316749e12c53c4f7426272

    • SHA512

      fa638897b8e7aa4868fbb5142003f25cb74871555b96a65b95fe338acc4735507c0bbd4cbcf68239141be8059b2990b9bf312f75f402ac6caf2c7d762aa6e92e

    • SSDEEP

      12288:mYWwSGAtqGnKa4yitPi9OnlOCwA+GSs3C/NakvROdZ:1rSGA8GelY9OlOLYSs3C/N/5OdZ

    Score
    10/10
    • Modifies WinLogon for persistence

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks