Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

New Order ...28.exe

windows7-x64

7

New Order ...28.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5557fd8f7a386a10f8f20cb2059f514e3fbe81cc4d03f3d36a4da7084e008b1b.rar

  • Size

    505KB

  • Sample

    240213-cxrtysca85

  • MD5

    3f8fd9ec3f3f0bbaa3cbc202e0adb9e2

  • SHA1

    e0aec2f0ac810f93be5deb0a598edad9919d4ba5

  • SHA256

    5557fd8f7a386a10f8f20cb2059f514e3fbe81cc4d03f3d36a4da7084e008b1b

  • SHA512

    7c594b6037b80cf52c9a8d2974eaa36b7f5e1de74556ad48c88f431adcf036f20661b2bfddb7cf883e91b0d5795b69b691dea528dc4f7e67c8689cdd5d5636e7

  • SSDEEP

    12288:iWBFOtEyzqPCqCMQgUsqD4Ai13OP+7sOGmvUiVVi4Gpx4AhqHe:iftEyaCfgUjim+7VRMi3i4Axl1

Score
7/10
persistence

Malware Config

Targets

    • Target

      New Order Confirmation 202311028.exe

    • Size

      615KB

    • MD5

      f044ecbe7061c181c782ad9406113b0b

    • SHA1

      f482fe9341d6e040a563ba0f429c165840bb48a0

    • SHA256

      5d361031b16736fe2a96b8907d2a33d28e40aca2587f74eb4d92482ce4e68118

    • SHA512

      b1762af153a87a9271c2bcaebd5894c336041b8af9b9fa2e1259aeeabfe63221f8d347b72b593d41bf6a1efeb53c856bc322ba0ee8f12faa16bae051d32b9229

    • SSDEEP

      12288:wop/kb5q37+1/GygOiDFG+JudHPqd1tm8e7wsR9UOR3D64ho2:wou4/ygOYFG+qid1Y8e7wQ9phm2

    Score
    7/10
    persistence

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      3f176d1ee13b0d7d6bd92e1c7a0b9bae

    • SHA1

      fe582246792774c2c9dd15639ffa0aca90d6fd0b

    • SHA256

      fa4ab1d6f79fd677433a31ada7806373a789d34328da46ccb0449bbf347bd73e

    • SHA512

      0a69124819b7568d0dea4e9e85ce8fe61c7ba697c934e3a95e2dcfb9f252b1d9da7faf8774b6e8efd614885507acc94987733eba09a2f5e7098b774dfc8524b6

    • SSDEEP

      192:OPtkumJX7zB22kGwfy0mtVgkCPOsX1un:/702k5qpdsXQn

    Score
    3/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks