Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a330e4b297162b1e031bfee76be5011131b848eb7e9d3016058369208780a649

  • Size

    717KB

  • Sample

    240630-awasyazhnc

  • MD5

    9316c4073e0d9a042c33dc334a0386f6

  • SHA1

    152873d50147cd44419b349aa62115df6b80fb41

  • SHA256

    a330e4b297162b1e031bfee76be5011131b848eb7e9d3016058369208780a649

  • SHA512

    3b1eafe67046aec07e4bf9161522990d31ffeaf85203fdcf97a13ee3e1b0e7530263385d326c16f81cf38c318ef84fc65c8b5bdf2fc12955c81968b44636bf2a

  • SSDEEP

    12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6HrSUsP6AVjANDRq8xW6FUBoobpPL8uv3:v6Zv2ivhBVnFys7xP86LXtqIWwUWobTv

Score
10/10

Malware Config

Targets

    • Target

      a330e4b297162b1e031bfee76be5011131b848eb7e9d3016058369208780a649

    • Size

      717KB

    • MD5

      9316c4073e0d9a042c33dc334a0386f6

    • SHA1

      152873d50147cd44419b349aa62115df6b80fb41

    • SHA256

      a330e4b297162b1e031bfee76be5011131b848eb7e9d3016058369208780a649

    • SHA512

      3b1eafe67046aec07e4bf9161522990d31ffeaf85203fdcf97a13ee3e1b0e7530263385d326c16f81cf38c318ef84fc65c8b5bdf2fc12955c81968b44636bf2a

    • SSDEEP

      12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6HrSUsP6AVjANDRq8xW6FUBoobpPL8uv3:v6Zv2ivhBVnFys7xP86LXtqIWwUWobTv

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Executes dropped EXE

    • Modifies system executable filetype association

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks