Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

540c169565...a6.exe

windows7-x64

10

540c169565...a6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    540c1695655e7b352dedcc5a70415da6.exe

  • Size

    508KB

  • Sample

    240111-yy27zafedn

  • MD5

    540c1695655e7b352dedcc5a70415da6

  • SHA1

    31a971439de86d02f8be9ebcf810b7d3642b0f57

  • SHA256

    52d8ca4792c8c0d6501c87530ca40f29f4c80c9bc78e567e49d898c12aece044

  • SHA512

    c1c85dd19a2ba309daf57bed958cc5f9cf40883c4bf7f806d6d34e81864dbb415e437704d7a0268bbbd34854d830f104b9edcae36e9996c690fd170e1fa31abb

  • SSDEEP

    6144:UZfec9EbXDk6Rk8KJrG1VVE+Iznmy+g46nmy+g4g/UOPSe570Szp3Znmy+g4H:UZWtI6Rkbu0VUOB062

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      540c1695655e7b352dedcc5a70415da6.exe

    • Size

      508KB

    • MD5

      540c1695655e7b352dedcc5a70415da6

    • SHA1

      31a971439de86d02f8be9ebcf810b7d3642b0f57

    • SHA256

      52d8ca4792c8c0d6501c87530ca40f29f4c80c9bc78e567e49d898c12aece044

    • SHA512

      c1c85dd19a2ba309daf57bed958cc5f9cf40883c4bf7f806d6d34e81864dbb415e437704d7a0268bbbd34854d830f104b9edcae36e9996c690fd170e1fa31abb

    • SSDEEP

      6144:UZfec9EbXDk6Rk8KJrG1VVE+Iznmy+g46nmy+g4g/UOPSe570Szp3Znmy+g4H:UZWtI6Rkbu0VUOB062

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks