Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

URLScan

urlscan

http://jhvy6hnubgth ...

windows7-x64

1

http://jhvy6hnubgth ...

windows10-1703-x64

4

http://jhvy6hnubgth ...

windows10-2004-x64

1

http://jhvy6hnubgth ...

windows11-21h2-x64

8

Resubmissions

28/02/2024, 22:50 UTC

240228-2r96safg3y 1

28/02/2024, 22:03 UTC

240228-1yhjnseh8v 1

28/02/2024, 21:27 UTC

240228-1atl2aec87 6

28/02/2024, 19:57 UTC

240228-ypmqxscd8y 8

28/02/2024, 19:56 UTC

240228-ynzzvsce79 1

28/02/2024, 19:08 UTC

240228-xs7ptsbf2s 6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    http://jhvy6hnubgth rn

  • Sample

    240228-ypmqxscd8y

Score
8/10
adwarediscoveryevasionpersistencestealertrojan

Malware Config

Targets

    • Target

      http://jhvy6hnubgth rn

    Score
    8/10
    adwarediscoveryevasionpersistencestealertrojan

    • Downloads MZ/PE file

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks whether UAC is enabled

      evasiontrojan

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Legitimate hosting services abused for malware hosting/C2

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Drops file in System32 directory

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.