Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

8d5354c616...7b.exe

windows7-x64

10

8d5354c616...7b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d5354c616d78ae53c61c76bd868937b

  • Size

    557KB

  • Sample

    240203-zqlexscdfp

  • MD5

    8d5354c616d78ae53c61c76bd868937b

  • SHA1

    7da13cbc7d266aac0277618dfc4974fc01a44eb6

  • SHA256

    d3d255b894d584b99087f6cb4562134e8e5061d204a9311e3194aba73617dfe6

  • SHA512

    217f1fc0952f4e54b8021a412255dbad83dd7d04240c8fcb7c64312dcd611e4416c7873e84445be3ebcd6d90324770fa30c4a50425cb4a1268a3721de0c03b08

  • SSDEEP

    6144:UZfec9EbXDk6Rk8KI/UOPSe570Szp3b/UOPSe570Szp3Znmy+g46nmy+g4H:UZWtI6Rk9OB0vOB06V2

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      8d5354c616d78ae53c61c76bd868937b

    • Size

      557KB

    • MD5

      8d5354c616d78ae53c61c76bd868937b

    • SHA1

      7da13cbc7d266aac0277618dfc4974fc01a44eb6

    • SHA256

      d3d255b894d584b99087f6cb4562134e8e5061d204a9311e3194aba73617dfe6

    • SHA512

      217f1fc0952f4e54b8021a412255dbad83dd7d04240c8fcb7c64312dcd611e4416c7873e84445be3ebcd6d90324770fa30c4a50425cb4a1268a3721de0c03b08

    • SSDEEP

      6144:UZfec9EbXDk6Rk8KI/UOPSe570Szp3b/UOPSe570Szp3Znmy+g46nmy+g4H:UZWtI6Rk9OB0vOB06V2

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks