Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

ddd6daba85...12.exe

windows7-x64

8

ddd6daba85...12.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ddd6daba856440eaf953b11fdbdab612

  • Size

    994KB

  • Sample

    240325-mz4lmsgf8s

  • MD5

    ddd6daba856440eaf953b11fdbdab612

  • SHA1

    be6e81928db1d3a6bb7f630a88b973a9f5abb541

  • SHA256

    54efa98d0bc33a94b0c3938a9b7c519e3849a5a3f25de33d3fcacc6bdf08a45f

  • SHA512

    9790580b46a7a2e19112d8f547227837ee33571187a3216d2404df05fce396ae60b61d01857a54e022cf12a42af8b43a26e6889a8f6e172ba3cf00cb37bcd48c

  • SSDEEP

    24576:QnyUxKy79rIuhwQQN2K3yWds0JkKyVTqhInl9S5Sz:+yg7ZIuhlFadsLYh8nlz

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      ddd6daba856440eaf953b11fdbdab612

    • Size

      994KB

    • MD5

      ddd6daba856440eaf953b11fdbdab612

    • SHA1

      be6e81928db1d3a6bb7f630a88b973a9f5abb541

    • SHA256

      54efa98d0bc33a94b0c3938a9b7c519e3849a5a3f25de33d3fcacc6bdf08a45f

    • SHA512

      9790580b46a7a2e19112d8f547227837ee33571187a3216d2404df05fce396ae60b61d01857a54e022cf12a42af8b43a26e6889a8f6e172ba3cf00cb37bcd48c

    • SSDEEP

      24576:QnyUxKy79rIuhwQQN2K3yWds0JkKyVTqhInl9S5Sz:+yg7ZIuhlFadsLYh8nlz

    Score
    8/10
    persistenceupx

    • Modifies Installed Components in the registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks