Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
https://eprst251.boo/files/Asana.msix
-
Sample
240501-yhszcshc44
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://eprst251.boo/files/Asana.msix
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
https://eprst251.boo/files/Asana.msix
Resource
win10-20240404-en
Behavioral task
behavioral3
Sample
https://eprst251.boo/files/Asana.msix
Resource
win10v2004-20240419-en
Behavioral task
behavioral4
Sample
https://eprst251.boo/files/Asana.msix
Resource
win11-20240419-en
Malware Config
Extracted
https://asana.com/
Targets
-
-
Target
https://eprst251.boo/files/Asana.msix
Score10/10-
NetSupport
NetSupport is a remote access tool sold as a legitimate system administration software.
-
Blocklisted process makes network request
-
Executes dropped EXE
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-