Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2b55373c5d...f9.exe

windows7-x64

10

2b55373c5d...f9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b55373c5d742ee7ae65f6342700b4eed7f8c482ee03536957b607889a3a22f9

  • Size

    338KB

  • Sample

    240615-yq6kessgpg

  • MD5

    26230c0439e6910fdc8e95d41f147737

  • SHA1

    b1b91ef57caa34d8c4d82d2f543b1d95d3417d27

  • SHA256

    2b55373c5d742ee7ae65f6342700b4eed7f8c482ee03536957b607889a3a22f9

  • SHA512

    93d42ebe69a58f9e85a70ac288ef492c3fe787ccf2f5bc78fc6dce6056874d26528278d3739b5bd064fb835b8efdb7d98cbd9ee15490a13cccde2e4d36ea7009

  • SSDEEP

    3072:BmVwRKCrIYlW9dLKEl4MC0iFixWS1WC2P9/KvN:BmVn6O4Ep3s7BZM

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      2b55373c5d742ee7ae65f6342700b4eed7f8c482ee03536957b607889a3a22f9

    • Size

      338KB

    • MD5

      26230c0439e6910fdc8e95d41f147737

    • SHA1

      b1b91ef57caa34d8c4d82d2f543b1d95d3417d27

    • SHA256

      2b55373c5d742ee7ae65f6342700b4eed7f8c482ee03536957b607889a3a22f9

    • SHA512

      93d42ebe69a58f9e85a70ac288ef492c3fe787ccf2f5bc78fc6dce6056874d26528278d3739b5bd064fb835b8efdb7d98cbd9ee15490a13cccde2e4d36ea7009

    • SSDEEP

      3072:BmVwRKCrIYlW9dLKEl4MC0iFixWS1WC2P9/KvN:BmVn6O4Ep3s7BZM

    Score
    10/10
    evasionupx

    • Modifies visibility of file extensions in Explorer

      evasion

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks