Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ba640e3015f32b43027d076646e6c948
-
Size
821KB
-
Sample
240308-dyq5gsfb6w
-
MD5
ba640e3015f32b43027d076646e6c948
-
SHA1
f18e94140c9f1561f52eb3ca605a7e9f567a7fbc
-
SHA256
a69f93776c59f4ac7f6e1883dcdbf4d7958b12d4d1ed1f27efe4ba65a1693bf3
-
SHA512
054fb24f9ca068e9c86c0bd8080c4102e279b806cd906cf9a4bbde784b02c969dce74697a04caf626e7f3211b92b435e10d43bcac3bbe2005bcf2e84177350b7
-
SSDEEP
12288:UZWtI6RkeeZJys73dOvXDpNjNe8DerQZb+md4w1UXyut:UuhaeeZJ8NI8DerQZb+md4wmr
Static task
static1
Behavioral task
behavioral1
Sample
ba640e3015f32b43027d076646e6c948.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ba640e3015f32b43027d076646e6c948.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
ba640e3015f32b43027d076646e6c948
-
Size
821KB
-
MD5
ba640e3015f32b43027d076646e6c948
-
SHA1
f18e94140c9f1561f52eb3ca605a7e9f567a7fbc
-
SHA256
a69f93776c59f4ac7f6e1883dcdbf4d7958b12d4d1ed1f27efe4ba65a1693bf3
-
SHA512
054fb24f9ca068e9c86c0bd8080c4102e279b806cd906cf9a4bbde784b02c969dce74697a04caf626e7f3211b92b435e10d43bcac3bbe2005bcf2e84177350b7
-
SSDEEP
12288:UZWtI6RkeeZJys73dOvXDpNjNe8DerQZb+md4w1UXyut:UuhaeeZJ8NI8DerQZb+md4wmr
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-