Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0b71eedde8ebaddc339a90858324dea4ff468cdd636955ba2e3f5c5742424691
-
Size
91KB
-
Sample
240319-m4q64sbb8w
-
MD5
b8c4367c2557b90f97ea8f8ccecbf362
-
SHA1
6e37771a2a4f04856a491596108c324f660d9103
-
SHA256
0b71eedde8ebaddc339a90858324dea4ff468cdd636955ba2e3f5c5742424691
-
SHA512
f5cea416ab9f1216a4dd438cb3ca6b8b200fb6a78c1ad5a1316c9ab669824dcb85c95c1ba49aa86b90cecbe7ed96b74fedc315bc034e3ccbb103f712a2eec06e
-
SSDEEP
1536:Si9nYGoQzoqZulWd3bGMSp7w+gRwySkO172w+0DQag:/YGoQzoTYd3bGMSReVSzxx+0DE
Malware Config
Targets
-
-
Target
0b71eedde8ebaddc339a90858324dea4ff468cdd636955ba2e3f5c5742424691
-
Size
91KB
-
MD5
b8c4367c2557b90f97ea8f8ccecbf362
-
SHA1
6e37771a2a4f04856a491596108c324f660d9103
-
SHA256
0b71eedde8ebaddc339a90858324dea4ff468cdd636955ba2e3f5c5742424691
-
SHA512
f5cea416ab9f1216a4dd438cb3ca6b8b200fb6a78c1ad5a1316c9ab669824dcb85c95c1ba49aa86b90cecbe7ed96b74fedc315bc034e3ccbb103f712a2eec06e
-
SSDEEP
1536:Si9nYGoQzoqZulWd3bGMSp7w+gRwySkO172w+0DQag:/YGoQzoTYd3bGMSReVSzxx+0DE
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Disables RegEdit via registry modification
-
Sets file execution options in registry
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
4