Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    PDFviewer.exe

  • Size

    75.7MB

  • Sample

    240310-qmgswsdf7s

  • MD5

    dca29f95dfa19b8d77445766754e3220

  • SHA1

    e6cbf797b3553d6a77dfb999f5d7aea7175cd11d

  • SHA256

    07fb3800df3ce9fd03fc1b3ba76bd26cada9b7309b91dbc616d0c866571a0490

  • SHA512

    7df65c2bacc0f974c576c72c59978fb33d717e8045669dea8c77e225153f08f9c17c09b27eaad8f8cb29507543447f3aeb221a7e869ea065d297935177235adb

  • SSDEEP

    1572864:4vpQpjlGSk8IpG7V+VPhqIbE7WZRjRnWWZ/dc7lWlkSWM9Zzra:4vpqRGSkB05awIxZRdlwYlkSNxa

Malware Config

Targets

    • Target

      PDFviewer.exe

    • Size

      75.7MB

    • MD5

      dca29f95dfa19b8d77445766754e3220

    • SHA1

      e6cbf797b3553d6a77dfb999f5d7aea7175cd11d

    • SHA256

      07fb3800df3ce9fd03fc1b3ba76bd26cada9b7309b91dbc616d0c866571a0490

    • SHA512

      7df65c2bacc0f974c576c72c59978fb33d717e8045669dea8c77e225153f08f9c17c09b27eaad8f8cb29507543447f3aeb221a7e869ea065d297935177235adb

    • SSDEEP

      1572864:4vpQpjlGSk8IpG7V+VPhqIbE7WZRjRnWWZ/dc7lWlkSWM9Zzra:4vpqRGSkB05awIxZRdlwYlkSNxa

    • Enumerates VirtualBox DLL files

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks