Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

9931892126...36.exe

windows7-x64

9

9931892126...36.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    99318921262d6b3856b953ee7f645045d1cea4003ac4f6668253b51c79d50e36

  • Size

    92KB

  • Sample

    240620-a8le7stgpn

  • MD5

    aa0309f312fabff45c637ea7b15a6746

  • SHA1

    49dceca4afbc66a45168859737c6cef2b7712fa9

  • SHA256

    99318921262d6b3856b953ee7f645045d1cea4003ac4f6668253b51c79d50e36

  • SHA512

    5a881f85eca17d82345281069a20c52df4493da5ce7c7a6642c3332c173054dbacbc58533dc96053e01aa47316685d7fd17dc3f75691cf842893db2ea04b1283

  • SSDEEP

    1536:R7PvnKhWQtC3Izj6TrlDa2z6Ewd0zvPTQw9LBZRQ8V3zhb:hPvKztiIzj6xtDLBZRQ8Vj5

Score
10/10
persistence

Malware Config

Targets

    • Target

      99318921262d6b3856b953ee7f645045d1cea4003ac4f6668253b51c79d50e36

    • Size

      92KB

    • MD5

      aa0309f312fabff45c637ea7b15a6746

    • SHA1

      49dceca4afbc66a45168859737c6cef2b7712fa9

    • SHA256

      99318921262d6b3856b953ee7f645045d1cea4003ac4f6668253b51c79d50e36

    • SHA512

      5a881f85eca17d82345281069a20c52df4493da5ce7c7a6642c3332c173054dbacbc58533dc96053e01aa47316685d7fd17dc3f75691cf842893db2ea04b1283

    • SSDEEP

      1536:R7PvnKhWQtC3Izj6TrlDa2z6Ewd0zvPTQw9LBZRQ8V3zhb:hPvKztiIzj6xtDLBZRQ8Vj5

    Score
    9/10
    persistence

    • Detects executables packed with eXPressor

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks