Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    45710bd31a13db93ff5f748c91973886

  • Size

    241KB

  • Sample

    240106-ghjbgsbad6

  • MD5

    45710bd31a13db93ff5f748c91973886

  • SHA1

    4cef73dfcab3a557ee85a4210a91c3c48f0c462e

  • SHA256

    45fe03252b01b96498769f3f54c9f43ea96bf8c5b79c35ff4cd37af906bbfe34

  • SHA512

    bd1af4b9d8504e84b4e2602b22d6674e82ce8dcb3228bcdfe13ea07d28140381b2e31de619cec82d980602935f0f1d5ddbe470c63591b93bbbd454836e695822

  • SSDEEP

    6144:ikeENDvTSn2SV/GuhYdViC7X57+nMHPFRgPas:iNEND/k/GLPX57+nMF6Pas

Malware Config

Targets

    • Target

      45710bd31a13db93ff5f748c91973886

    • Size

      241KB

    • MD5

      45710bd31a13db93ff5f748c91973886

    • SHA1

      4cef73dfcab3a557ee85a4210a91c3c48f0c462e

    • SHA256

      45fe03252b01b96498769f3f54c9f43ea96bf8c5b79c35ff4cd37af906bbfe34

    • SHA512

      bd1af4b9d8504e84b4e2602b22d6674e82ce8dcb3228bcdfe13ea07d28140381b2e31de619cec82d980602935f0f1d5ddbe470c63591b93bbbd454836e695822

    • SSDEEP

      6144:ikeENDvTSn2SV/GuhYdViC7X57+nMHPFRgPas:iNEND/k/GLPX57+nMF6Pas

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks