Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c46dca8d576bb1f436ed722363d2252e
-
Size
14KB
-
Sample
240312-3wxlxsge72
-
MD5
c46dca8d576bb1f436ed722363d2252e
-
SHA1
45036fbd60366f86cc47874b42887af7910a20e9
-
SHA256
d997a1c71d4bdf49d15b0d8fd8ec4716a2216ce265f4238bb36fe3f14e55e15d
-
SHA512
68d1c44eed6ee663ecb736ec555aaa7e72d5d6c07717b1ceac70b522ace690f11bcb30e1274b90e0f3cc6fff68238059fa4084337d784da39ee2b2fd674c6fe1
-
SSDEEP
384:I8TZeAbFdGdtTYHNEynD74xO31kgkMO+bODbmEfNmT63MSS6D3d:TexJxOUhNfNmTQMd2d
Malware Config
Targets
-
-
Target
c46dca8d576bb1f436ed722363d2252e
-
Size
14KB
-
MD5
c46dca8d576bb1f436ed722363d2252e
-
SHA1
45036fbd60366f86cc47874b42887af7910a20e9
-
SHA256
d997a1c71d4bdf49d15b0d8fd8ec4716a2216ce265f4238bb36fe3f14e55e15d
-
SHA512
68d1c44eed6ee663ecb736ec555aaa7e72d5d6c07717b1ceac70b522ace690f11bcb30e1274b90e0f3cc6fff68238059fa4084337d784da39ee2b2fd674c6fe1
-
SSDEEP
384:I8TZeAbFdGdtTYHNEynD74xO31kgkMO+bODbmEfNmT63MSS6D3d:TexJxOUhNfNmTQMd2d
Score10/10-
Modifies firewall policy service
-
Modifies AppInit DLL entries
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1