Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

OInstall.exe

windows7-x64

10

OInstall.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OInstall.exe

  • Size

    30.4MB

  • Sample

    240227-v5kdysfd6v

  • MD5

    11002d91453bc60e8e581d24a21d0b58

  • SHA1

    33767ec31bc367af24c44c30143f0f4966e1e2b2

  • SHA256

    05a747f54188d9e72c3f582fef65b686885ff7fab849f129e1eadd9526867295

  • SHA512

    0b628e060149b3473f4d9564c3eebbe4af1bd55b634676c9848d8137288f425bc8c856016b9a1cd7d11e8170c6ddcc3c343b33fb1fc2200b8d790a1f8965bbbe

  • SSDEEP

    786432:2vRkdObGXYztqYMa0qGFPt7lgx+SSuiy2Qx7dH//q:gkd4zdMzqGJt7lgLSuiy2Qx7dH//q

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

https://mrodevicemgr.officeapps.live.com/mrodevicemgrsvc/api/v2/C2RReleaseData

Extracted

Language
ps1
Source
URLs
exe.dropper

https://mrodevicemgr.officeapps.live.com/mrodevicemgrsvc/api/v2/C2RReleaseData

Targets

    • Target

      OInstall.exe

    • Size

      30.4MB

    • MD5

      11002d91453bc60e8e581d24a21d0b58

    • SHA1

      33767ec31bc367af24c44c30143f0f4966e1e2b2

    • SHA256

      05a747f54188d9e72c3f582fef65b686885ff7fab849f129e1eadd9526867295

    • SHA512

      0b628e060149b3473f4d9564c3eebbe4af1bd55b634676c9848d8137288f425bc8c856016b9a1cd7d11e8170c6ddcc3c343b33fb1fc2200b8d790a1f8965bbbe

    • SSDEEP

      786432:2vRkdObGXYztqYMa0qGFPt7lgx+SSuiy2Qx7dH//q:gkd4zdMzqGJt7lgLSuiy2Qx7dH//q

    Score
    10/10

    • Blocklisted process makes network request

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks