Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

9a704018ed...c9.exe

windows7-x64

10

9a704018ed...c9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a704018edf1e84427fbce1d4e3bafc9

  • Size

    68KB

  • Sample

    240214-b2q8jsdg8v

  • MD5

    9a704018edf1e84427fbce1d4e3bafc9

  • SHA1

    5d436c01639c95b3db0520416b902e849d7805c4

  • SHA256

    f020f1e1380c95c141db08ca8f636ef60734b22242cbfbe55d77e32e6a6a6ecd

  • SHA512

    7531236d79b62e5e2cb5c0710c270a3c10ef9b1d1cbee7f0b8d0f871df81daa1800020205645d612478aef089ce92400815c76939d64463d10c115bf8a4cc9ae

  • SSDEEP

    1536:UOEVqZF3uikZBYHO9xEUHDIIRkYq6R/d3H8ZV:UfAFe3zYHO9xzHDIIx1R/d8

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      9a704018edf1e84427fbce1d4e3bafc9

    • Size

      68KB

    • MD5

      9a704018edf1e84427fbce1d4e3bafc9

    • SHA1

      5d436c01639c95b3db0520416b902e849d7805c4

    • SHA256

      f020f1e1380c95c141db08ca8f636ef60734b22242cbfbe55d77e32e6a6a6ecd

    • SHA512

      7531236d79b62e5e2cb5c0710c270a3c10ef9b1d1cbee7f0b8d0f871df81daa1800020205645d612478aef089ce92400815c76939d64463d10c115bf8a4cc9ae

    • SSDEEP

      1536:UOEVqZF3uikZBYHO9xEUHDIIRkYq6R/d3H8ZV:UfAFe3zYHO9xzHDIIx1R/d8

    Score
    10/10
    evasionpersistence

    • Modifies firewall policy service

      evasion

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.