Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

07ff5290bc...ed.exe

windows7-x64

7

07ff5290bc...ed.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

sirrah.dll

windows7-x64

3

sirrah.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07ff5290bca33bcd25f479f468f9a0c0371b3aac25dc5bb846b55ba60ca658ed.zip

  • Size

    1.4MB

  • Sample

    240706-p6r8asydnj

  • MD5

    10a500b26d8ca3ed57e499812c4834d4

  • SHA1

    c0a3f1c6315937dbba857084c8e7a9acf3fcfa69

  • SHA256

    b66a06b7bd494c13b470ffbfa86d271856708a6d93a7117b725001e6e6aef08d

  • SHA512

    86480c6a5547d44f0fceaa9743da55af0e1322263f96ab5855aec3dce242d3702db2caf8e3b4a4cbef377c2af2185a7ebf8c6e75c680337242fedf56932c57c8

  • SSDEEP

    24576:4Hn452hy5h6puxT6XYlwnLXWU3SV5rGS9gm8aRO2hAdtqXlpOJMhHlblnl4P7E9X:4HPA1xT6XYkrR4x9uuuypgWHlZl4P7Et

Score
7/10
persistence

Malware Config

Targets

    • Target

      07ff5290bca33bcd25f479f468f9a0c0371b3aac25dc5bb846b55ba60ca658ed

    • Size

      1.4MB

    • MD5

      429ebf3b919d8959e39f5c90b22e81dd

    • SHA1

      52ca91f7e8c0ffac9ceaefef894e19b09aed662e

    • SHA256

      07ff5290bca33bcd25f479f468f9a0c0371b3aac25dc5bb846b55ba60ca658ed

    • SHA512

      b462472208a2254e3724620a08438d9f251d70bb8edec6ff9906335eef12c16b29abc7d02535b373841aa141fae64e9aed0fe0750aff3570a6d77d087b73ad4f

    • SSDEEP

      24576:nQoFpItRUEuaEvDLGh4lz8NxHfh5Mxfc8CiF4H//0lF1b+/723dSCax/vY:9boOEdEv2hTHfh5Mxfc8Ocl3+723sH/w

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      883eff06ac96966270731e4e22817e11

    • SHA1

      523c87c98236cbc04430e87ec19b977595092ac8

    • SHA256

      44e5dfd551b38e886214bd6b9c8ee913c4c4d1f085a6575d97c3e892b925da82

    • SHA512

      60333253342476911c84bbc1d9bf8a29f811207787fdd6107dce8d2b6e031669303f28133ffc811971ed7792087fe90fb1faabc0af4e91c298ba51e28109a390

    • SSDEEP

      96:UPDYcJ+nx4vVp76JX7zBlkCg21Fxz4THxtrqw1at0JgwLEjo+OB3yUVCdl/wNj+l:UPtkuWJX7zB3kGwfy0nyUVsxCjOMb1u

    Score
    3/10
    behavioral3behavioral4

    • Target

      sirrah.dll

    • Size

      52KB

    • MD5

      e07ca0e84fc1eeedeccc2dec1e123128

    • SHA1

      36731fd829ced121434e80ae92f62c169d949db3

    • SHA256

      659d9bf3fbe53372fa97394cc67eb6904c9339a44d0c56a53d5ca1c4dda0c842

    • SHA512

      bdf232c7b5784c38d7a0feeb103459cf6534eb6ce63e158efeb269452785219c3051f736ffa53ed20306f1cfa1ac3af6b4a09c8392f3126517d0c0f291772f10

    • SSDEEP

      768:kH1nb/WcYwIsw+5ztCjW4UxugTY99imgVt3XJ:kH1nTWc0sw+FtCCVugs+1tnJ

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks