Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bc0373870c85be54fdd7c7c35ec026ff

  • Size

    116KB

  • Sample

    240309-rkvgmshf34

  • MD5

    bc0373870c85be54fdd7c7c35ec026ff

  • SHA1

    ccdaf9d27c7163d885ea7d93b453120fc70e4dae

  • SHA256

    37d72193214b00659bded1a8feca2c7d458466c65cccc62a6aacc7a1052cbd63

  • SHA512

    162701363c3e795160936448bb8a0e87f0349396ab213b243ab85549e54e0a2f8df877b474ee885d36c0007357be1a36096518a7465a41f38180c773e4d91000

  • SSDEEP

    1536:bfsG+8DE180o1YfkDklKKR1D5OqnVgufxwqbU4EETLSmNlshbjQviSjwUbT2o8N:bvB70EYH7D5OGVnOqbnEfmNGCJdahN

Score
10/10

Malware Config

Targets

    • Target

      bc0373870c85be54fdd7c7c35ec026ff

    • Size

      116KB

    • MD5

      bc0373870c85be54fdd7c7c35ec026ff

    • SHA1

      ccdaf9d27c7163d885ea7d93b453120fc70e4dae

    • SHA256

      37d72193214b00659bded1a8feca2c7d458466c65cccc62a6aacc7a1052cbd63

    • SHA512

      162701363c3e795160936448bb8a0e87f0349396ab213b243ab85549e54e0a2f8df877b474ee885d36c0007357be1a36096518a7465a41f38180c773e4d91000

    • SSDEEP

      1536:bfsG+8DE180o1YfkDklKKR1D5OqnVgufxwqbU4EETLSmNlshbjQviSjwUbT2o8N:bvB70EYH7D5OGVnOqbnEfmNGCJdahN

    Score
    10/10
    • Modifies firewall policy service

    • Modifies Windows Firewall

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks