Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

TopazGigap....0.msi

windows10-1703-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TopazGigapixelAI-7.2.0.msi

  • Size

    254.3MB

  • Sample

    240603-g8cavsfh32

  • MD5

    30dc3c668473463b569f0111fcb37c9d

  • SHA1

    e993348efd304d5d4f374ddf15ae886566b6135b

  • SHA256

    b05578f3b64cbd41a9aab28171d404f2c0463c7850abb1d8df43c43d1e8ed710

  • SHA512

    11af4fd65ad10ef107ba5ce545a56f1f1ba5550eec8e1c606e9e4cdd1519a53369e2b80da5366c2dced227d4273b375d2275e6d5a4a63c03b4e8e11a71905396

  • SSDEEP

    6291456:oGjWPgfIOsUe2OXGMXrkGq6PiVd1DIW0T5t1pmQ77PAnIx1Py:3qUle2OW35d1Dw1anIP

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      TopazGigapixelAI-7.2.0.msi

    • Size

      254.3MB

    • MD5

      30dc3c668473463b569f0111fcb37c9d

    • SHA1

      e993348efd304d5d4f374ddf15ae886566b6135b

    • SHA256

      b05578f3b64cbd41a9aab28171d404f2c0463c7850abb1d8df43c43d1e8ed710

    • SHA512

      11af4fd65ad10ef107ba5ce545a56f1f1ba5550eec8e1c606e9e4cdd1519a53369e2b80da5366c2dced227d4273b375d2275e6d5a4a63c03b4e8e11a71905396

    • SSDEEP

      6291456:oGjWPgfIOsUe2OXGMXrkGq6PiVd1DIW0T5t1pmQ77PAnIx1Py:3qUle2OW35d1Dw1anIP

    Score
    8/10
    bootkitpersistence

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks