Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    85cc500e9d627adf6c993b35c10e32de

  • Size

    414KB

  • Sample

    240201-dy8pjaccbk

  • MD5

    85cc500e9d627adf6c993b35c10e32de

  • SHA1

    9f22a7e0577d657e418d93e9c2f501ffd94a50e6

  • SHA256

    d6be4a9ced2bb27e8d077642c3ca0473d1d63123935719e293a226bffec8fcd4

  • SHA512

    ecda6ab10dfcc208030b01078768a6282e1df6b14963b86ffec824b81a16eccc2a1144353c21ba60436ac4967776b1418be51314908b514f8efd36b2ac8b0624

  • SSDEEP

    12288:xEU3npqLuOCtLpq7vnGjp2Vofyr3t/Fwh0uZatfGRxSI:xEU3pqLXEUQ2VofyxFwh0N

Score
10/10

Malware Config

Targets

    • Target

      85cc500e9d627adf6c993b35c10e32de

    • Size

      414KB

    • MD5

      85cc500e9d627adf6c993b35c10e32de

    • SHA1

      9f22a7e0577d657e418d93e9c2f501ffd94a50e6

    • SHA256

      d6be4a9ced2bb27e8d077642c3ca0473d1d63123935719e293a226bffec8fcd4

    • SHA512

      ecda6ab10dfcc208030b01078768a6282e1df6b14963b86ffec824b81a16eccc2a1144353c21ba60436ac4967776b1418be51314908b514f8efd36b2ac8b0624

    • SSDEEP

      12288:xEU3npqLuOCtLpq7vnGjp2Vofyr3t/Fwh0uZatfGRxSI:xEU3pqLXEUQ2VofyxFwh0N

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies security service

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks