Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    965c28adeb669aa74549e117c176e3be

  • Size

    1.0MB

  • Sample

    240212-f5agesde2x

  • MD5

    965c28adeb669aa74549e117c176e3be

  • SHA1

    70b5f0583a2973219f9b187e2bed8404be5aeb3a

  • SHA256

    9e1ae3b4e55a48aa40649622e37d4322f761c91feb5db2d6620449217cb38fd7

  • SHA512

    99c3de0116ba6847a6a1dc569e3f58a635900a9aaa9e9109a968d63f0c939cbb7af782d4094aac59b2b6abfc5530844b9c6fcfe9026dc795bafb12b6501bae20

  • SSDEEP

    12288:zKz0viabdAm4EhAhRw95PxS0mVEwe96AkzCdcH8uSS64tBaQsh6DQ+m6brTQS4N8:zE+Amy0mg5kzCxKF26bQSsTzs7

Malware Config

Targets

    • Target

      965c28adeb669aa74549e117c176e3be

    • Size

      1.0MB

    • MD5

      965c28adeb669aa74549e117c176e3be

    • SHA1

      70b5f0583a2973219f9b187e2bed8404be5aeb3a

    • SHA256

      9e1ae3b4e55a48aa40649622e37d4322f761c91feb5db2d6620449217cb38fd7

    • SHA512

      99c3de0116ba6847a6a1dc569e3f58a635900a9aaa9e9109a968d63f0c939cbb7af782d4094aac59b2b6abfc5530844b9c6fcfe9026dc795bafb12b6501bae20

    • SSDEEP

      12288:zKz0viabdAm4EhAhRw95PxS0mVEwe96AkzCdcH8uSS64tBaQsh6DQ+m6brTQS4N8:zE+Amy0mg5kzCxKF26bQSsTzs7

    • Adds policy Run key to start application

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks