Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

f30ee0ae36...21.exe

windows7-x64

10

f30ee0ae36...21.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f30ee0ae36acac86a1b76c872bcc19cf28ba7315fb533efe47c340f400aceb21

  • Size

    192KB

  • Sample

    240524-fxvsdseg32

  • MD5

    158329992ce49ac46db7748a0eed826d

  • SHA1

    217950177eb7aacdfab864f8c9884daa3f407cfe

  • SHA256

    f30ee0ae36acac86a1b76c872bcc19cf28ba7315fb533efe47c340f400aceb21

  • SHA512

    f32130833f44aaa88c9a21d45948ef0f47f2bc1e664f52ecbf90188905bfa33ae74e637fa47340be2b315cffd013dfe2b9214961fa48858f75ac0a82670efb98

  • SSDEEP

    1536:rZec+oXYmce7hOtuw6ZhcXRWqIgMl4t8w7kDlCrDQqDlWnouy8O6Nuf51TQmQM2j:rZec+0YmciIfWf/8IulmoutkTy27zU

Score
10/10
persistence

Malware Config

Targets

    • Target

      f30ee0ae36acac86a1b76c872bcc19cf28ba7315fb533efe47c340f400aceb21

    • Size

      192KB

    • MD5

      158329992ce49ac46db7748a0eed826d

    • SHA1

      217950177eb7aacdfab864f8c9884daa3f407cfe

    • SHA256

      f30ee0ae36acac86a1b76c872bcc19cf28ba7315fb533efe47c340f400aceb21

    • SHA512

      f32130833f44aaa88c9a21d45948ef0f47f2bc1e664f52ecbf90188905bfa33ae74e637fa47340be2b315cffd013dfe2b9214961fa48858f75ac0a82670efb98

    • SSDEEP

      1536:rZec+oXYmce7hOtuw6ZhcXRWqIgMl4t8w7kDlCrDQqDlWnouy8O6Nuf51TQmQM2j:rZec+0YmciIfWf/8IulmoutkTy27zU

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks