Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

favicon.ico

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    favicon.ico

  • Size

    1KB

  • Sample

    240305-t5q13acc55

  • MD5

    beaf4c56d7e410168eb3ea260d3cfec7

  • SHA1

    a0ff8a0278a3d632ec29de8563cced304dc0eaaa

  • SHA256

    505fefb40ccada1d0f5ed6e072af13fb78709c77c4e8adb1cfd9a31bddf97f26

  • SHA512

    d197b45f118b1d35c422a292a4e9088f5d8c705f3e39f6c437088d54ff72914fa4f6082e030275ff560d1c517d34586543c91f1fb9b54ee45c76f2b1b34c2a63

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      favicon.ico

    • Size

      1KB

    • MD5

      beaf4c56d7e410168eb3ea260d3cfec7

    • SHA1

      a0ff8a0278a3d632ec29de8563cced304dc0eaaa

    • SHA256

      505fefb40ccada1d0f5ed6e072af13fb78709c77c4e8adb1cfd9a31bddf97f26

    • SHA512

      d197b45f118b1d35c422a292a4e9088f5d8c705f3e39f6c437088d54ff72914fa4f6082e030275ff560d1c517d34586543c91f1fb9b54ee45c76f2b1b34c2a63

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks