Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ca7e819ec3588ec3855873a92eb10528

  • Size

    468KB

  • Sample

    240315-e5geasgc4v

  • MD5

    ca7e819ec3588ec3855873a92eb10528

  • SHA1

    d03a6377af778a751a520d616ceccc6caa78e777

  • SHA256

    dd553e2f43b96763bb55b99960df399fb7f44cb02fd7d1eb82b89bc91632423e

  • SHA512

    39686e09975f004f9a43376bee6f6337c6deb6701b479ac506b17d235114494535fb7748a530a46c4d2f4a68f2afb7fd2de7bb1d445365da51e68c510ba41ff5

  • SSDEEP

    12288:A06ld0/XOW0AVb3uPjl5XthpFN2BNp/OqAo1/S:A0U0P40Dyf9PT2BN0qAS/S

Score
10/10

Malware Config

Targets

    • Target

      ca7e819ec3588ec3855873a92eb10528

    • Size

      468KB

    • MD5

      ca7e819ec3588ec3855873a92eb10528

    • SHA1

      d03a6377af778a751a520d616ceccc6caa78e777

    • SHA256

      dd553e2f43b96763bb55b99960df399fb7f44cb02fd7d1eb82b89bc91632423e

    • SHA512

      39686e09975f004f9a43376bee6f6337c6deb6701b479ac506b17d235114494535fb7748a530a46c4d2f4a68f2afb7fd2de7bb1d445365da51e68c510ba41ff5

    • SSDEEP

      12288:A06ld0/XOW0AVb3uPjl5XthpFN2BNp/OqAo1/S:A0U0P40Dyf9PT2BN0qAS/S

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks