Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

ba640e3015...48.exe

windows7-x64

10

ba640e3015...48.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ba640e3015f32b43027d076646e6c948

  • Size

    821KB

  • Sample

    240308-dyq5gsfb6w

  • MD5

    ba640e3015f32b43027d076646e6c948

  • SHA1

    f18e94140c9f1561f52eb3ca605a7e9f567a7fbc

  • SHA256

    a69f93776c59f4ac7f6e1883dcdbf4d7958b12d4d1ed1f27efe4ba65a1693bf3

  • SHA512

    054fb24f9ca068e9c86c0bd8080c4102e279b806cd906cf9a4bbde784b02c969dce74697a04caf626e7f3211b92b435e10d43bcac3bbe2005bcf2e84177350b7

  • SSDEEP

    12288:UZWtI6RkeeZJys73dOvXDpNjNe8DerQZb+md4w1UXyut:UuhaeeZJ8NI8DerQZb+md4wmr

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      ba640e3015f32b43027d076646e6c948

    • Size

      821KB

    • MD5

      ba640e3015f32b43027d076646e6c948

    • SHA1

      f18e94140c9f1561f52eb3ca605a7e9f567a7fbc

    • SHA256

      a69f93776c59f4ac7f6e1883dcdbf4d7958b12d4d1ed1f27efe4ba65a1693bf3

    • SHA512

      054fb24f9ca068e9c86c0bd8080c4102e279b806cd906cf9a4bbde784b02c969dce74697a04caf626e7f3211b92b435e10d43bcac3bbe2005bcf2e84177350b7

    • SSDEEP

      12288:UZWtI6RkeeZJys73dOvXDpNjNe8DerQZb+md4w1UXyut:UuhaeeZJ8NI8DerQZb+md4wmr

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks