Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ICCSafe.Installer.msi

  • Size

    107.8MB

  • Sample

    240222-v8zm2sdb3s

  • MD5

    9599a8f5b6c834d4f16a8e7132acea39

  • SHA1

    1306c6d51382fdfac74a6fd777ce93b293dc1a82

  • SHA256

    af59c36b03ee77d584a3af87cc6444613bacf49094b7233369a835004cd0ad82

  • SHA512

    28ad8b8f532460ba6b7401232e7abfe2946f9e895ceeac91d1b63f769c345d3d0bf7ef47ceb23b2450c3611292bfcc4679d9ead87fccf5b4f6c3e17ff9e24d62

  • SSDEEP

    3145728:0GD6Whj3b1fnRj1llWxtHNhk14zpGJrGwxfr8kNq5RJ/64:H6Whj3b1fRRLkHN64NGJrFxf1Nq5D

Score
8/10

Malware Config

Targets

    • Target

      ICCSafe.Installer.msi

    • Size

      107.8MB

    • MD5

      9599a8f5b6c834d4f16a8e7132acea39

    • SHA1

      1306c6d51382fdfac74a6fd777ce93b293dc1a82

    • SHA256

      af59c36b03ee77d584a3af87cc6444613bacf49094b7233369a835004cd0ad82

    • SHA512

      28ad8b8f532460ba6b7401232e7abfe2946f9e895ceeac91d1b63f769c345d3d0bf7ef47ceb23b2450c3611292bfcc4679d9ead87fccf5b4f6c3e17ff9e24d62

    • SSDEEP

      3145728:0GD6Whj3b1fnRj1llWxtHNhk14zpGJrGwxfr8kNq5RJ/64:H6Whj3b1fRRLkHN64NGJrFxf1Nq5D

    Score
    8/10
    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks