Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

confirmpayment.exe

windows7-x64

7

confirmpayment.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VirusShare_0374131295bbc40d1221e01df0dc0f38

  • Size

    344KB

  • Sample

    240610-1ccras1cph

  • MD5

    0374131295bbc40d1221e01df0dc0f38

  • SHA1

    2560aedff7371b72f7f5ba413395f516d4a8a43f

  • SHA256

    99ab73086ffdd74f864f54cf8722478577729f62062e7c2697832853ba0afc0a

  • SHA512

    606020a76f94db98773da5a5e387c1dda78d89464b17b114b9b0c2a221e69c0a87941696076c283fe3adee4cd328a51b6a2f5581645f0703092cbeeb9e6e5a4e

  • SSDEEP

    6144:7mouEo/qhS69uSquZMKxRPxvhh46YWE1TeCMP0WejdQoQFhbgXqNUjhroPkxzhP8:yEoCg4HZMYZvhGBdeCM8Wo7cMXCPyb+

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      confirmpayment.exe

    • Size

      378KB

    • MD5

      c20001848d080af9535d90548af09b90

    • SHA1

      725c8f6709625702d85a16bb2c9a9bf4be97a12c

    • SHA256

      1458a047833fc15055a82111f8f8871b769322e612cd330abc3ef6b92f313587

    • SHA512

      94509a0bbb1693d43db04453864761cddbb54e007cd873d84bbd28f0cf27f554881463559693bb482c830fa5a156b2b0a3faa44b6626dada8c64d7f8ae8a384b

    • SSDEEP

      6144:ijbeiZV869uSquZMKxPPxvNh46YoE1TeC4P0We1dQoQFhNgjqNUjhfoPkxzcp36:iuOi4HZM8ZvNGvdeC48W47c6jiPyw6

    Score
    7/10
    persistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks