Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f9dfd791515ca089de8b77257d47e0ef0349fee7f1917769841cd3a086157597
-
Size
841KB
-
Sample
240703-fqzsrsyekh
-
MD5
6b34e2289e78e1e251655b8da5b7446c
-
SHA1
c74c065b9169e1ae7ee01d4bcdd265e25a22595d
-
SHA256
f9dfd791515ca089de8b77257d47e0ef0349fee7f1917769841cd3a086157597
-
SHA512
6d469c34b74696b19ae32ce07aa98917ed11d3db15f339a0a456bf93e2005f2c0af42f5e34e94d06893cc7906ff5de5ba6bc1c243544ed586d64bd8444a041f6
-
SSDEEP
12288:faWzgMG7v3qnCiLErQohhQb4cCJ8lnyuQ4BgWlRPT0lBjvrEH7Hn:CaH2v6CTrj+nyuQ4hRPUrEH7H
Static task
static1
Behavioral task
behavioral1
Sample
f9dfd791515ca089de8b77257d47e0ef0349fee7f1917769841cd3a086157597.exe
Resource
win7-20240220-en
Malware Config
Targets
-
-
Target
f9dfd791515ca089de8b77257d47e0ef0349fee7f1917769841cd3a086157597
-
Size
841KB
-
MD5
6b34e2289e78e1e251655b8da5b7446c
-
SHA1
c74c065b9169e1ae7ee01d4bcdd265e25a22595d
-
SHA256
f9dfd791515ca089de8b77257d47e0ef0349fee7f1917769841cd3a086157597
-
SHA512
6d469c34b74696b19ae32ce07aa98917ed11d3db15f339a0a456bf93e2005f2c0af42f5e34e94d06893cc7906ff5de5ba6bc1c243544ed586d64bd8444a041f6
-
SSDEEP
12288:faWzgMG7v3qnCiLErQohhQb4cCJ8lnyuQ4BgWlRPT0lBjvrEH7Hn:CaH2v6CTrj+nyuQ4hRPUrEH7H
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-