Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

ef91ed6181...04.exe

windows7-x64

10

ef91ed6181...04.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ef91ed618117b1c5d7af0fa6c76b3781ca8767f782928ff8e91b823f65dda104

  • Size

    479KB

  • Sample

    240617-efhwtsxckl

  • MD5

    abfd77fb8d59001140494f7625a26c78

  • SHA1

    34d85b6296031861eb993ee18f1f4aa28a0398d0

  • SHA256

    ef91ed618117b1c5d7af0fa6c76b3781ca8767f782928ff8e91b823f65dda104

  • SHA512

    6cf38a2273a9b171478f97b932e688fc54abcfe353bb0abc40a91c34ce2593c00f52c7341f642110e707773cea3446d8157bd8e6b2c116ecfce47f167b91f191

  • SSDEEP

    6144:tlnQiBolP5OVPOwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:/niP5zwIaJwISfPI

Score
10/10
persistence

Malware Config

Targets

    • Target

      ef91ed618117b1c5d7af0fa6c76b3781ca8767f782928ff8e91b823f65dda104

    • Size

      479KB

    • MD5

      abfd77fb8d59001140494f7625a26c78

    • SHA1

      34d85b6296031861eb993ee18f1f4aa28a0398d0

    • SHA256

      ef91ed618117b1c5d7af0fa6c76b3781ca8767f782928ff8e91b823f65dda104

    • SHA512

      6cf38a2273a9b171478f97b932e688fc54abcfe353bb0abc40a91c34ce2593c00f52c7341f642110e707773cea3446d8157bd8e6b2c116ecfce47f167b91f191

    • SSDEEP

      6144:tlnQiBolP5OVPOwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:/niP5zwIaJwISfPI

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks