Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

0ef6c40c1a...01.dll

windows7-x64

7

0ef6c40c1a...01.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ef6c40c1a9b7972cd632467d993a91bcabadcc5e0dc625b9f745e3f1a565201

  • Size

    219KB

  • Sample

    240108-j3d9dafac9

  • MD5

    4a79fc9416269b4f193bdf7229a46b3f

  • SHA1

    6c5cb8d7f5eddfe0cb71c2aa38df9bbf602e0c63

  • SHA256

    0ef6c40c1a9b7972cd632467d993a91bcabadcc5e0dc625b9f745e3f1a565201

  • SHA512

    4aab11fd506261d132afcf165b706162b9dfad0e18d326136f232ede2509a1a0fdad320f66ca4cef962ca1e4d724d6cb4b3570f602c5c3d27d90d6e709fb8a5c

  • SSDEEP

    6144:2C4zkyByodbSJ0l02WCL9BV+UdvrEFp7hKum:2C4tDdbSJ0CCL9BjvrEH7I

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      0ef6c40c1a9b7972cd632467d993a91bcabadcc5e0dc625b9f745e3f1a565201

    • Size

      219KB

    • MD5

      4a79fc9416269b4f193bdf7229a46b3f

    • SHA1

      6c5cb8d7f5eddfe0cb71c2aa38df9bbf602e0c63

    • SHA256

      0ef6c40c1a9b7972cd632467d993a91bcabadcc5e0dc625b9f745e3f1a565201

    • SHA512

      4aab11fd506261d132afcf165b706162b9dfad0e18d326136f232ede2509a1a0fdad320f66ca4cef962ca1e4d724d6cb4b3570f602c5c3d27d90d6e709fb8a5c

    • SSDEEP

      6144:2C4zkyByodbSJ0l02WCL9BV+UdvrEFp7hKum:2C4tDdbSJ0CCL9BjvrEH7I

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks