Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ba602c3029f8e389156c8de6fac9f7da

  • Size

    96KB

  • Sample

    240308-dsc1nsfa5y

  • MD5

    ba602c3029f8e389156c8de6fac9f7da

  • SHA1

    b4551ff6ec081269d16f4287e478fc714441de33

  • SHA256

    8cad060f5372056e8891e0ef9eec771359c996a9553f1e87f868264fc67a2df9

  • SHA512

    70704b40de90ccd01120e505fc1216d7e67aca98db35bc943572f0693a29d3a72ad15cfbf3cf1ef1884c8a1cc53efc50649de22f3850c864fa3e6120adf58bec

  • SSDEEP

    1536:6TqaxQsuaZ+McIiqChuygKS3bir8P5QmlKRhbvDWBQZ2/36bouMppmUkZmyM:cxzuaZ+hmyfTkKzfWqkuzny

Score
10/10

Malware Config

Targets

    • Target

      ba602c3029f8e389156c8de6fac9f7da

    • Size

      96KB

    • MD5

      ba602c3029f8e389156c8de6fac9f7da

    • SHA1

      b4551ff6ec081269d16f4287e478fc714441de33

    • SHA256

      8cad060f5372056e8891e0ef9eec771359c996a9553f1e87f868264fc67a2df9

    • SHA512

      70704b40de90ccd01120e505fc1216d7e67aca98db35bc943572f0693a29d3a72ad15cfbf3cf1ef1884c8a1cc53efc50649de22f3850c864fa3e6120adf58bec

    • SSDEEP

      1536:6TqaxQsuaZ+McIiqChuygKS3bir8P5QmlKRhbvDWBQZ2/36bouMppmUkZmyM:cxzuaZ+hmyfTkKzfWqkuzny

    Score
    10/10
    • Modifies firewall policy service

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks