Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7fe91422506d646492abd6efe94b7c03

  • Size

    124KB

  • Sample

    240129-qclzvsaea8

  • MD5

    7fe91422506d646492abd6efe94b7c03

  • SHA1

    03bb94bb12236807c2e047bbb2b88eaa932019db

  • SHA256

    3404751f67c7c42ae140645255125857b1003ba7205a776fa6d814bfdf997888

  • SHA512

    d4e979506aecc15f4d20c2b4baf6ad9a489669aa9fa7898b63d3399d0d05d7510b7f529be0259933694085734aad68e8e83ae7d81fb168e22bc9f5e33469350e

  • SSDEEP

    3072:p6y9db2LWBHwyG3nrnVta6UQJvOqN5Mu+g1u0bxGNx+l:piLWBH3G3nxta6UQJvOA5v+g1u0bUNx+

Malware Config

Targets

    • Target

      7fe91422506d646492abd6efe94b7c03

    • Size

      124KB

    • MD5

      7fe91422506d646492abd6efe94b7c03

    • SHA1

      03bb94bb12236807c2e047bbb2b88eaa932019db

    • SHA256

      3404751f67c7c42ae140645255125857b1003ba7205a776fa6d814bfdf997888

    • SHA512

      d4e979506aecc15f4d20c2b4baf6ad9a489669aa9fa7898b63d3399d0d05d7510b7f529be0259933694085734aad68e8e83ae7d81fb168e22bc9f5e33469350e

    • SSDEEP

      3072:p6y9db2LWBHwyG3nrnVta6UQJvOqN5Mu+g1u0bxGNx+l:piLWBH3G3nxta6UQJvOA5v+g1u0bUNx+

    • UAC bypass

    • Drops file in Drivers directory

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks