Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8c0cab2774eb87e91a6c513192ca5d772c1f28568941af294cd1c516a7ab94b8

  • Size

    256KB

  • Sample

    240510-aceyjsab32

  • MD5

    ad64c38f1dd640157ce5cb0deb393562

  • SHA1

    664405dfcf8957c9a7253a4903967e2c0423551b

  • SHA256

    8c0cab2774eb87e91a6c513192ca5d772c1f28568941af294cd1c516a7ab94b8

  • SHA512

    957aea892c129f05d0c3482b2072ba7144f010fa6306c403e8f0e66a13c40c232cb1b178880b7e488fcc7239b8c589fa0015f1783de3b1cd9c1e0f8bd82db2f2

  • SSDEEP

    6144:5DLQxoyQ1LpnFyZ+dayL9rvolH8u3ZhGod:BQCyQ1LHk+zR7QHjGo

Score
10/10

Malware Config

Targets

    • Target

      8c0cab2774eb87e91a6c513192ca5d772c1f28568941af294cd1c516a7ab94b8

    • Size

      256KB

    • MD5

      ad64c38f1dd640157ce5cb0deb393562

    • SHA1

      664405dfcf8957c9a7253a4903967e2c0423551b

    • SHA256

      8c0cab2774eb87e91a6c513192ca5d772c1f28568941af294cd1c516a7ab94b8

    • SHA512

      957aea892c129f05d0c3482b2072ba7144f010fa6306c403e8f0e66a13c40c232cb1b178880b7e488fcc7239b8c589fa0015f1783de3b1cd9c1e0f8bd82db2f2

    • SSDEEP

      6144:5DLQxoyQ1LpnFyZ+dayL9rvolH8u3ZhGod:BQCyQ1LHk+zR7QHjGo

    • Detects executables packed with VMProtect.

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Deletes itself

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks