Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b56af89e00c588d0f807fcdcdab80cdf

  • Size

    416KB

  • Sample

    240305-xgvacseb91

  • MD5

    b56af89e00c588d0f807fcdcdab80cdf

  • SHA1

    f25aacf61b478f056119f4d10cca74a5d6ff6462

  • SHA256

    5960253ae6a1fc106096740cc06205816c81f7a38569988a67d7eb7a9536c33f

  • SHA512

    12913b95e6cc81a00871cae56c99c39231c87122dc620fe0988c648563c6027f22ed72e9353d0767c285c82b92773dc053b97d15e9c0695d706b48ed73f3d476

  • SSDEEP

    12288:U9iEGOh63LY9AWp3tQYDJi0BHk++++FN++z+C/LZQ:Fmhd9ZpiXIk++++FN++z+u

Score
10/10

Malware Config

Targets

    • Target

      b56af89e00c588d0f807fcdcdab80cdf

    • Size

      416KB

    • MD5

      b56af89e00c588d0f807fcdcdab80cdf

    • SHA1

      f25aacf61b478f056119f4d10cca74a5d6ff6462

    • SHA256

      5960253ae6a1fc106096740cc06205816c81f7a38569988a67d7eb7a9536c33f

    • SHA512

      12913b95e6cc81a00871cae56c99c39231c87122dc620fe0988c648563c6027f22ed72e9353d0767c285c82b92773dc053b97d15e9c0695d706b48ed73f3d476

    • SSDEEP

      12288:U9iEGOh63LY9AWp3tQYDJi0BHk++++FN++z+C/LZQ:Fmhd9ZpiXIk++++FN++z+u

    Score
    10/10
    • Modifies firewall policy service

    • Modifies Windows Firewall

    • Stops running service(s)

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks