Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

eae1a415f6...20.exe

windows7-x64

9

eae1a415f6...20.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eae1a415f673a4cb6d475e72af92125ef39f3c7542e7e64acb6a8107a1287720

  • Size

    125KB

  • Sample

    240503-fg1npsfe7w

  • MD5

    1b4de1d81a4129e32c06be9d9dc6fbb6

  • SHA1

    bc25b3ac5736276336e2ddc110a1ff63816fbcfa

  • SHA256

    eae1a415f673a4cb6d475e72af92125ef39f3c7542e7e64acb6a8107a1287720

  • SHA512

    fc6719b30802640c5b6ad0cae85bcc3ba0df74bbc36441b69c5440e82432236c557692ace7d1e94aaf0919feb5923369cf934f2ca7ada5d5b8195860644d8043

  • SSDEEP

    3072:NEboFVlGAvwsgbpvYfMTc72L10fPsout:SBzsgbpvnTcyOPsoS

Score
10/10
upx

Malware Config

Targets

    • Target

      eae1a415f673a4cb6d475e72af92125ef39f3c7542e7e64acb6a8107a1287720

    • Size

      125KB

    • MD5

      1b4de1d81a4129e32c06be9d9dc6fbb6

    • SHA1

      bc25b3ac5736276336e2ddc110a1ff63816fbcfa

    • SHA256

      eae1a415f673a4cb6d475e72af92125ef39f3c7542e7e64acb6a8107a1287720

    • SHA512

      fc6719b30802640c5b6ad0cae85bcc3ba0df74bbc36441b69c5440e82432236c557692ace7d1e94aaf0919feb5923369cf934f2ca7ada5d5b8195860644d8043

    • SSDEEP

      3072:NEboFVlGAvwsgbpvYfMTc72L10fPsout:SBzsgbpvnTcyOPsoS

    Score
    9/10
    upx

    • UPX dump on OEP (original entry point)

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks