Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b35613c575c102404a830331e10eec80_NEAS

  • Size

    483KB

  • Sample

    240507-rld62sdd94

  • MD5

    b35613c575c102404a830331e10eec80

  • SHA1

    ecff0b489c2395a0f0b3e2db85bf84a9757149fb

  • SHA256

    679e7f08e7555f72b68e9da772f1f62702ce5fbf23a8de44b70f4fa37e820356

  • SHA512

    d83be7c32b1e00178c9d215295d24fd8d5d57db13f8b9ef0165d01968d25017beb810ad0ca4649a13ed5cbbe50d80a0b8b2c08f7051bcf789bd957484fd285da

  • SSDEEP

    12288:rETLoHTLJJ/sH78tY5vARM0RM/3ARMSG0dhvARMoHG:TtY58dhMHG

Score
10/10

Malware Config

Targets

    • Target

      b35613c575c102404a830331e10eec80_NEAS

    • Size

      483KB

    • MD5

      b35613c575c102404a830331e10eec80

    • SHA1

      ecff0b489c2395a0f0b3e2db85bf84a9757149fb

    • SHA256

      679e7f08e7555f72b68e9da772f1f62702ce5fbf23a8de44b70f4fa37e820356

    • SHA512

      d83be7c32b1e00178c9d215295d24fd8d5d57db13f8b9ef0165d01968d25017beb810ad0ca4649a13ed5cbbe50d80a0b8b2c08f7051bcf789bd957484fd285da

    • SSDEEP

      12288:rETLoHTLJJ/sH78tY5vARM0RM/3ARMSG0dhvARMoHG:TtY58dhMHG

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks