Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

cvnwzmammv.exe

windows7-x64

6

cvnwzmammv.exe

windows10-1703-x64

6

cvnwzmammv.exe

windows10-2004-x64

cvnwzmammv.exe

windows11-21h2-x64

cvnwzmammv.exe

macos-10.15-amd64

4

cvnwzmammv...ss.exe

windows7-x64

6

cvnwzmammv...ss.exe

windows10-1703-x64

1

cvnwzmammv...ss.exe

windows10-2004-x64

1

cvnwzmammv...ss.exe

windows11-21h2-x64

1

cvnwzmammv...ss.exe

macos-10.15-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cvnwzmammv.zip

  • Size

    176KB

  • Sample

    240327-a2fw5sba5t

  • MD5

    198933f0f54d9dd5d77878c03ec48eb2

  • SHA1

    89b5aa4b921488cf29cedbffeea3d150eafd90ac

  • SHA256

    40a6dfb2da3f160374c4c287d2b2e7657d151f5d9c1d73fd0f6682264a3b0872

  • SHA512

    2238bed820dc866f125b985cc1e993467da31060072d32ed30c28dafd4d8b520f5cf5a19f1c6ca8091f8faee87bdc70e529a5bbe0c4541ffa481e21786e4dac5

  • SSDEEP

    3072:JcFH15MjHr97OBHT1DHzezD0OX+DZJmDSQcMrPk97vmQjbC1i3J7YdW4sVs:GFHYH4lHKzDpX+9JmDqkmmGbSi3AW4cs

Score
6/10
bootkitevasionmacospersistence

Malware Config

Targets

    • Target

      cvnwzmammv.exe

    • Size

      316KB

    • MD5

      f5e0962b8f5ba52bbec6f2b7f63a2bc1

    • SHA1

      ef2437a8277565dc36ab2222d893849964eb863c

    • SHA256

      5a520735eb6373fbb0a5e76d72b33dbb9514d7cfa3b7fb465a12bd9221ec27f3

    • SHA512

      2c86bf5145efa719c54c33710db57a7ae1b8b4a51d3161f5ff09f6e62199ee6ac07e64f5ade3d9de576979ce588fa55984f0ce1a97d0a502a4fbf960ddf30450

    • SSDEEP

      3072:GGmjllRDGTCzXCLA52mvVZKjzepmECnvwsC6m7Yl22wruUiLrf923F8GDsrXkd+Q:EjlnC6yQmzeAPv23

    Score
    6/10
    bootkitpersistenceevasion

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2behavioral3behavioral4behavioral5

    • Target

      cvnwzmammv.harmless.exe

    • Size

      307KB

    • MD5

      8b537468ed4eafd01ae1f6d5f11bc052

    • SHA1

      601f8e1aa9d178f7b1ed87606edb19450ab714c1

    • SHA256

      db6487202d548f3e8f5a28f38095d48dfcf7ede13b31d49b827262d314d57f9c

    • SHA512

      ebd2f83dedea6cdeaa71afb068544dfdad75a146c8d542643a105d3f2de2cef9954727c1be4486be522c314c8a1057de8699318530ce493542e545f873c699fb

    • SSDEEP

      3072:xfo9A6UsqCFiv2mvVZKjzepmECVflsC6m7Yl22wruUiLrf923F8GDsrXkd+nAz4Z:69GzmzeAPN0n

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral10behavioral6behavioral7behavioral8behavioral9

MITRE ATT&CK Enterprise v15

Tasks