Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

71fb31da3c...c6.exe

windows7-x64

10

71fb31da3c...c6.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    71fb31da3cbf7262ee9ee1ed4b04a4c6

  • Size

    68KB

  • Sample

    240124-meyvnafhbm

  • MD5

    71fb31da3cbf7262ee9ee1ed4b04a4c6

  • SHA1

    4c5e26eb2962f2b41fe4bd36800f6b3f4e232803

  • SHA256

    4648b2e57b32d4c0cb8a818996493bde37b7ef24dd266b6e8602112ee7865d6c

  • SHA512

    d4ee55a40fda8df91b0155009337635125d47bc6414883e1296aa13635750413858c209c5904047645a4302880ec8cbafa28220de4f8dbeac51d6397bfea3e52

  • SSDEEP

    1536:F9wvQUreUbyzsB+2zeNOVffLoSkqeRiq8b:tA/yzn2ze8VfcfJMq8b

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      71fb31da3cbf7262ee9ee1ed4b04a4c6

    • Size

      68KB

    • MD5

      71fb31da3cbf7262ee9ee1ed4b04a4c6

    • SHA1

      4c5e26eb2962f2b41fe4bd36800f6b3f4e232803

    • SHA256

      4648b2e57b32d4c0cb8a818996493bde37b7ef24dd266b6e8602112ee7865d6c

    • SHA512

      d4ee55a40fda8df91b0155009337635125d47bc6414883e1296aa13635750413858c209c5904047645a4302880ec8cbafa28220de4f8dbeac51d6397bfea3e52

    • SSDEEP

      1536:F9wvQUreUbyzsB+2zeNOVffLoSkqeRiq8b:tA/yzn2ze8VfcfJMq8b

    Score
    10/10
    evasionpersistence

    • Modifies firewall policy service

      evasion

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks