Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
933ab605c5393352301c1033a4b88613b0c47b833b8deea695a1e750f336f071
-
Size
66KB
-
Sample
240610-r8cazazemc
-
MD5
766daa59bb63db8c6743ea35e10ee3bf
-
SHA1
73e4b640c09ea9a74604422b6524f9cada87465d
-
SHA256
933ab605c5393352301c1033a4b88613b0c47b833b8deea695a1e750f336f071
-
SHA512
86952fe8682bec94f5db178c4a5ebf294ac14ae4da28f54b7fcb4b73bbd4d159a7943237776fa616b0da4d5cee9647e1f6f4ab847f0112f029e9ecdcb32cb659
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXis:IeklMMYJhqezw/pXzH9is
Malware Config
Targets
-
-
Target
933ab605c5393352301c1033a4b88613b0c47b833b8deea695a1e750f336f071
-
Size
66KB
-
MD5
766daa59bb63db8c6743ea35e10ee3bf
-
SHA1
73e4b640c09ea9a74604422b6524f9cada87465d
-
SHA256
933ab605c5393352301c1033a4b88613b0c47b833b8deea695a1e750f336f071
-
SHA512
86952fe8682bec94f5db178c4a5ebf294ac14ae4da28f54b7fcb4b73bbd4d159a7943237776fa616b0da4d5cee9647e1f6f4ab847f0112f029e9ecdcb32cb659
-
SSDEEP
1536:EHfetdklPp+07gDSrB8Xru2zGeJxgawTzpXzrDJrXis:IeklMMYJhqezw/pXzH9is
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
3Registry Run Keys / Startup Folder
2Winlogon Helper DLL
1