Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    725111769732a4b3b6880671667ab641

  • Size

    586KB

  • Sample

    240124-qb5qksbaf4

  • MD5

    725111769732a4b3b6880671667ab641

  • SHA1

    acf3c87ff73c462ba491a3da533b9554e169bd54

  • SHA256

    ac246b389876255f18b026ed603a4a56a1bc92d4fa799a728e2e65c26bbfd736

  • SHA512

    617376006e2af2bfbb97c1c4084f259d1574306954f1cf585321dfddca8574942b02a800b31af829ab3b17425af279c1f14e1b8f1bf54a98b6c99fbef353ebda

  • SSDEEP

    6144:GWZfec9EbXDk6RkQKp6rG1VVE+IwrG1VVE+Ih/UOPSe570Szp3irG1VVE+I4cW:3ZWtI6RkaunupOB0JumW

Score
10/10

Malware Config

Targets

    • Target

      725111769732a4b3b6880671667ab641

    • Size

      586KB

    • MD5

      725111769732a4b3b6880671667ab641

    • SHA1

      acf3c87ff73c462ba491a3da533b9554e169bd54

    • SHA256

      ac246b389876255f18b026ed603a4a56a1bc92d4fa799a728e2e65c26bbfd736

    • SHA512

      617376006e2af2bfbb97c1c4084f259d1574306954f1cf585321dfddca8574942b02a800b31af829ab3b17425af279c1f14e1b8f1bf54a98b6c99fbef353ebda

    • SSDEEP

      6144:GWZfec9EbXDk6RkQKp6rG1VVE+IwrG1VVE+Ih/UOPSe570Szp3irG1VVE+I4cW:3ZWtI6RkaunupOB0JumW

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks