Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

12/07/2024, 12:36

240712-psxkvstdpp 7

12/07/2024, 12:34

240712-prwl6stdlk 7

12/07/2024, 12:32

240712-pqzmfawblh 3

General

  • Target

    aaa.exe

  • Size

    15.6MB

  • Sample

    240712-psxkvstdpp

  • MD5

    96ed2160da5a5899a938933d81254e61

  • SHA1

    ea17be355dc518ada8409d72530f3f6b022e064e

  • SHA256

    1523f8d4a130014212eb78c91baf6bd6ff8fa12f3722845c5f573111e1270a38

  • SHA512

    d2a5f1fc2f719a889711900c30ed4638e80d1a486596251c4685852f609f2e39b0bd06fd8e5bd7eb678a702018675442248b413c0bf4c3171d60f61f14f52b50

  • SSDEEP

    393216:NSEFPSFNNcBMFtS9yxHqfp+YcYVJKClpYkkA/MBzcFRf1/iI:NSEFawMi9yxKfY3uJrpYkfUBzcFRfB

Score
7/10

Malware Config

Targets

    • Target

      aaa.exe

    • Size

      15.6MB

    • MD5

      96ed2160da5a5899a938933d81254e61

    • SHA1

      ea17be355dc518ada8409d72530f3f6b022e064e

    • SHA256

      1523f8d4a130014212eb78c91baf6bd6ff8fa12f3722845c5f573111e1270a38

    • SHA512

      d2a5f1fc2f719a889711900c30ed4638e80d1a486596251c4685852f609f2e39b0bd06fd8e5bd7eb678a702018675442248b413c0bf4c3171d60f61f14f52b50

    • SSDEEP

      393216:NSEFPSFNNcBMFtS9yxHqfp+YcYVJKClpYkkA/MBzcFRf1/iI:NSEFawMi9yxKfY3uJrpYkfUBzcFRfB

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks