Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
520445c797bb4dcf5561adb8e1d0ecef
-
Size
468KB
-
Sample
240111-aj9fqsbgd3
-
MD5
520445c797bb4dcf5561adb8e1d0ecef
-
SHA1
bb09307e35de6b7db25d81f6f8f8e5ca06dea0ee
-
SHA256
0b88f1532541c8cbca9816c49d8a788a03240e71938f7612ba80f7223023945f
-
SHA512
8537fc7ead343c0ce44aa0c8679d2d1ad9c456edff431789cd49ceb0f12f81ffd7d29d2cba08438105e3be74757dd8daa9b975c883359e5c5e88f7b1fe85cfa9
-
SSDEEP
6144:UZfec9EbXDk6RkMBEKWnmy+g4IE2EZ/UOPSe570Szp3kE2E4:UZWtI6RkMBoayOB0+4
Static task
static1
Behavioral task
behavioral1
Sample
520445c797bb4dcf5561adb8e1d0ecef.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
520445c797bb4dcf5561adb8e1d0ecef.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
520445c797bb4dcf5561adb8e1d0ecef
-
Size
468KB
-
MD5
520445c797bb4dcf5561adb8e1d0ecef
-
SHA1
bb09307e35de6b7db25d81f6f8f8e5ca06dea0ee
-
SHA256
0b88f1532541c8cbca9816c49d8a788a03240e71938f7612ba80f7223023945f
-
SHA512
8537fc7ead343c0ce44aa0c8679d2d1ad9c456edff431789cd49ceb0f12f81ffd7d29d2cba08438105e3be74757dd8daa9b975c883359e5c5e88f7b1fe85cfa9
-
SSDEEP
6144:UZfec9EbXDk6RkMBEKWnmy+g4IE2EZ/UOPSe570Szp3kE2E4:UZWtI6RkMBoayOB0+4
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-