Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

035a449610...aa.exe

windows7-x64

10

035a449610...aa.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    035a449610eb56af315c4b185f6fc81bd6059a403b061cbfeab5c2c67c45c8aa

  • Size

    377KB

  • Sample

    240327-vpv6hsgf94

  • MD5

    0c73e4dc86863317f030ab1658c1ccbe

  • SHA1

    64286f86993e171ec92deb3a6b7f05b95f28d82f

  • SHA256

    035a449610eb56af315c4b185f6fc81bd6059a403b061cbfeab5c2c67c45c8aa

  • SHA512

    b5a14e623562288debcdc12f2a0bdb10d140e5527baf94e98ab81ba2a29d22a9154c7709a20d2fdaa505f79b2d7002378bc63da734fb7a5a36d3dd2dea3f7402

  • SSDEEP

    6144:2u56I4dCeNp5OBGSgnohijgAUv5fKx/SgnohignC5V:2Q4XO+dMTv5i1dayV

Score
10/10
persistence

Malware Config

Targets

    • Target

      035a449610eb56af315c4b185f6fc81bd6059a403b061cbfeab5c2c67c45c8aa

    • Size

      377KB

    • MD5

      0c73e4dc86863317f030ab1658c1ccbe

    • SHA1

      64286f86993e171ec92deb3a6b7f05b95f28d82f

    • SHA256

      035a449610eb56af315c4b185f6fc81bd6059a403b061cbfeab5c2c67c45c8aa

    • SHA512

      b5a14e623562288debcdc12f2a0bdb10d140e5527baf94e98ab81ba2a29d22a9154c7709a20d2fdaa505f79b2d7002378bc63da734fb7a5a36d3dd2dea3f7402

    • SSDEEP

      6144:2u56I4dCeNp5OBGSgnohijgAUv5fKx/SgnohignC5V:2Q4XO+dMTv5i1dayV

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks