Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4789fbb1fed43018a41ec55db5eb570c

  • Size

    55KB

  • Sample

    240107-anef6accc2

  • MD5

    4789fbb1fed43018a41ec55db5eb570c

  • SHA1

    0b652bca4f3f054ead04b56609df897c0137fb03

  • SHA256

    ec771427b49936dedbd2f9537d674403b1dc1f412a975aa28a7a7ca2c58bf60a

  • SHA512

    876a52b1981262481fe4704be8e8b17d610d8d88b14adc1be330d5b10eb76d91b07109575b2750c0f620f95d608fe628b6ab1c3e0a49cb23ff2f2869b3e2a2f0

  • SSDEEP

    1536:tYZANK7y1nMmvgPNB+MeLhJlk+fVWGkzVUYE:qwKmVxoPNB+3LXq+fVWGkLE

Score
10/10

Malware Config

Targets

    • Target

      4789fbb1fed43018a41ec55db5eb570c

    • Size

      55KB

    • MD5

      4789fbb1fed43018a41ec55db5eb570c

    • SHA1

      0b652bca4f3f054ead04b56609df897c0137fb03

    • SHA256

      ec771427b49936dedbd2f9537d674403b1dc1f412a975aa28a7a7ca2c58bf60a

    • SHA512

      876a52b1981262481fe4704be8e8b17d610d8d88b14adc1be330d5b10eb76d91b07109575b2750c0f620f95d608fe628b6ab1c3e0a49cb23ff2f2869b3e2a2f0

    • SSDEEP

      1536:tYZANK7y1nMmvgPNB+MeLhJlk+fVWGkzVUYE:qwKmVxoPNB+3LXq+fVWGkLE

    Score
    10/10
    • Modifies WinLogon for persistence

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks