Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

Patch.exe

windows10-1703-x64

9

Patch.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Patch.exe

  • Size

    4.6MB

  • Sample

    240716-g6mc2s1gpe

  • MD5

    4a027f5b895f161a0d0e26f8ec6f31a7

  • SHA1

    2d8aa07828c92d4d9d85fc62ba82f0fe0bb5a789

  • SHA256

    73f5eee95f0d5250f5d2f7a29702700537ebe6c08861d4ddfefc09d485f0f65e

  • SHA512

    9b12840d6f2f9a277e7edded5830daf70713ea3f90ddf324bece98616d716400dc0247a47dc9d016fb02f9803fb0a2e2853f4a56e752b13a704132d4acfa23cb

  • SSDEEP

    98304:0kLEAGg00ojGjm4EC/qQb4zldELsSqr7jkie3t:DEzg7AGUqqXHPjze3t

Score
9/10
persistence

Malware Config

Targets

    • Target

      Patch.exe

    • Size

      4.6MB

    • MD5

      4a027f5b895f161a0d0e26f8ec6f31a7

    • SHA1

      2d8aa07828c92d4d9d85fc62ba82f0fe0bb5a789

    • SHA256

      73f5eee95f0d5250f5d2f7a29702700537ebe6c08861d4ddfefc09d485f0f65e

    • SHA512

      9b12840d6f2f9a277e7edded5830daf70713ea3f90ddf324bece98616d716400dc0247a47dc9d016fb02f9803fb0a2e2853f4a56e752b13a704132d4acfa23cb

    • SSDEEP

      98304:0kLEAGg00ojGjm4EC/qQb4zldELsSqr7jkie3t:DEzg7AGUqqXHPjze3t

    Score
    9/10
    persistence

    • Detected Nirsoft tools

      Free utilities often used by attackers which can steal passwords, product keys, etc.

    • Event Triggered Execution: Image File Execution Options Injection

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks