Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6fb2134808a0bc977a526761a168c841

  • Size

    1.2MB

  • Sample

    240122-r4yneahbdm

  • MD5

    6fb2134808a0bc977a526761a168c841

  • SHA1

    a37066f96458077291feabe899cfd31bf03507a0

  • SHA256

    a7737613bec87203e2c8ca32d7fbbe26547e507bef1d0b107827c52a23c220d9

  • SHA512

    66c8699c8f6bad0d0c0c256e5f1bf0e630a7442af3ef870dea393635cb9b36f254bbc05d56d9768a6e8fdbccd6e989e7923619bd2b22308e6a64e910dcdcf319

  • SSDEEP

    12288:3ZWtI6RkVOB06UOB0vwOcOB06UOB0vfbiZKm4H8zq9FjtdX:3uhaVOkOAmOkOAc4HTFj

Score
10/10

Malware Config

Targets

    • Target

      6fb2134808a0bc977a526761a168c841

    • Size

      1.2MB

    • MD5

      6fb2134808a0bc977a526761a168c841

    • SHA1

      a37066f96458077291feabe899cfd31bf03507a0

    • SHA256

      a7737613bec87203e2c8ca32d7fbbe26547e507bef1d0b107827c52a23c220d9

    • SHA512

      66c8699c8f6bad0d0c0c256e5f1bf0e630a7442af3ef870dea393635cb9b36f254bbc05d56d9768a6e8fdbccd6e989e7923619bd2b22308e6a64e910dcdcf319

    • SSDEEP

      12288:3ZWtI6RkVOB06UOB0vwOcOB06UOB0vfbiZKm4H8zq9FjtdX:3uhaVOkOAmOkOAc4HTFj

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks