Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b25e4bd43b46dbca8b8426123ef19a81

  • Size

    971KB

  • Sample

    240304-rw7aksce6w

  • MD5

    b25e4bd43b46dbca8b8426123ef19a81

  • SHA1

    08fcd2287c89ad14ff3fafa41bfede63522132f8

  • SHA256

    8fb9d9f9706f072fedf8935f33b8f430c23be4efeff0bdb30fe58e02c4881531

  • SHA512

    0bfa4ccbffe029fc350a58b663b031a17b99fade908f6cd40dd2c75eaad69cc8df442812e661f8b17b60fac86f13a11eae716f77d8da71e6b5c86613117ec02e

  • SSDEEP

    12288:UZWtI6RkeeZJys73dOvXDpNjNe8zyOB0Ju9OceZJys73dOvXDpNjNe8zyOB0JuMB:UuhaeeZJ8NI8zyO/eZJ8NI8zyOYeZu

Score
10/10

Malware Config

Targets

    • Target

      b25e4bd43b46dbca8b8426123ef19a81

    • Size

      971KB

    • MD5

      b25e4bd43b46dbca8b8426123ef19a81

    • SHA1

      08fcd2287c89ad14ff3fafa41bfede63522132f8

    • SHA256

      8fb9d9f9706f072fedf8935f33b8f430c23be4efeff0bdb30fe58e02c4881531

    • SHA512

      0bfa4ccbffe029fc350a58b663b031a17b99fade908f6cd40dd2c75eaad69cc8df442812e661f8b17b60fac86f13a11eae716f77d8da71e6b5c86613117ec02e

    • SSDEEP

      12288:UZWtI6RkeeZJys73dOvXDpNjNe8zyOB0Ju9OceZJys73dOvXDpNjNe8zyOB0JuMB:UuhaeeZJ8NI8zyO/eZJ8NI8zyOYeZu

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks