Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0742b44b245affa4d76e5b90e8b647f72be79c8cbbc9b419f29509606bfa03ff
-
Size
66KB
-
Sample
240527-w6v3hsdd6x
-
MD5
a4b05dbb75c8eec38f583b931c430a20
-
SHA1
7d0636576d3dbb1a27bcd897d41e9e949a493552
-
SHA256
0742b44b245affa4d76e5b90e8b647f72be79c8cbbc9b419f29509606bfa03ff
-
SHA512
765f0a10bf8aae54e2e18b777ccdf5727c3f69029289baa635c6526dab15c75c0cb2ee65a4dac062edf7d724e7ae7c6b558e70fa7aab5740083350627ba01fd3
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi7CCCCCCCCCCCCCCCCCCCC7:IeklMMYJhqezw/pXzH9iP
Malware Config
Targets
-
-
Target
0742b44b245affa4d76e5b90e8b647f72be79c8cbbc9b419f29509606bfa03ff
-
Size
66KB
-
MD5
a4b05dbb75c8eec38f583b931c430a20
-
SHA1
7d0636576d3dbb1a27bcd897d41e9e949a493552
-
SHA256
0742b44b245affa4d76e5b90e8b647f72be79c8cbbc9b419f29509606bfa03ff
-
SHA512
765f0a10bf8aae54e2e18b777ccdf5727c3f69029289baa635c6526dab15c75c0cb2ee65a4dac062edf7d724e7ae7c6b558e70fa7aab5740083350627ba01fd3
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXi7CCCCCCCCCCCCCCCCCCCC7:IeklMMYJhqezw/pXzH9iP
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1