Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8e49407f818f9f343010ec948ceb32c3

  • Size

    52KB

  • Sample

    240204-fq9yqscdgk

  • MD5

    8e49407f818f9f343010ec948ceb32c3

  • SHA1

    9bd466b756cf4454437f5cdde4443dd3a8222017

  • SHA256

    279a90f79f05c36134a542ba4297df3799fc4869818828d1768d47a34b53deef

  • SHA512

    9fe5b174e1b384a989037212f7e7041ff9154eb0a06ec3b17907abdd25bcc6bf6af69395104d0ce693c1016cbcea588042fa661209a6d5f5ed47a2e3d3190923

  • SSDEEP

    768:2iln/zREBzqhn4AiWUzrfbispgN3crB58Zez57tpydMUq:h1EB65fUzrjiFM15eW7KdMz

Score
10/10

Malware Config

Targets

    • Target

      8e49407f818f9f343010ec948ceb32c3

    • Size

      52KB

    • MD5

      8e49407f818f9f343010ec948ceb32c3

    • SHA1

      9bd466b756cf4454437f5cdde4443dd3a8222017

    • SHA256

      279a90f79f05c36134a542ba4297df3799fc4869818828d1768d47a34b53deef

    • SHA512

      9fe5b174e1b384a989037212f7e7041ff9154eb0a06ec3b17907abdd25bcc6bf6af69395104d0ce693c1016cbcea588042fa661209a6d5f5ed47a2e3d3190923

    • SSDEEP

      768:2iln/zREBzqhn4AiWUzrfbispgN3crB58Zez57tpydMUq:h1EB65fUzrjiFM15eW7KdMz

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies firewall policy service

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks