Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Awaken.exe

  • Size

    23KB

  • Sample

    240630-zmxnsavfkb

  • MD5

    98f2861572ae00ee76c136d11e735a19

  • SHA1

    ec491d408709da17497316c7fad40f19933aac71

  • SHA256

    6c2d5a8873e5d063329d0dd71328fa897a160ee24bf6f2effd5692a64bd8aac8

  • SHA512

    826c47d878c3d11b2be6103e20af15a7dd6a6a680e8edc4f5a9d5ab81a1939b730b58baa4c9ebc56eef3e44dec169108fad853c7e0d21cb7a6b58ef0d903dcb1

  • SSDEEP

    384:wh7EY/KXlQivWYNs5MfgMaZBvi1NP72lVIrY23jDLg036wLX3+WX:FizDbcj/rY23jDLgiFLX3JX

Score
9/10

Malware Config

Targets

    • Target

      Awaken.exe

    • Size

      23KB

    • MD5

      98f2861572ae00ee76c136d11e735a19

    • SHA1

      ec491d408709da17497316c7fad40f19933aac71

    • SHA256

      6c2d5a8873e5d063329d0dd71328fa897a160ee24bf6f2effd5692a64bd8aac8

    • SHA512

      826c47d878c3d11b2be6103e20af15a7dd6a6a680e8edc4f5a9d5ab81a1939b730b58baa4c9ebc56eef3e44dec169108fad853c7e0d21cb7a6b58ef0d903dcb1

    • SSDEEP

      384:wh7EY/KXlQivWYNs5MfgMaZBvi1NP72lVIrY23jDLg036wLX3+WX:FizDbcj/rY23jDLgiFLX3JX

    Score
    9/10
    • Nirsoft

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks