Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Yeni Metin Belgesi.txt

  • Size

    18B

  • Sample

    240802-vty3zaxemd

  • MD5

    4cda4f278683f4f1dcd4069994c83fed

  • SHA1

    d2c5036c2f349d54a02a5e2be51c77353914d9e0

  • SHA256

    13e504a9b415d995f6f6d270e14f010d204965050ca10c6e63813f520b89fb19

  • SHA512

    beb1cf12705f26266f0564745125565f764bafcbe1693b6da3e0110d22de12fc5390b086294bfe22a0d3633aef2f15fb83fe05ea0d660ba51fe031d004ef8924

Malware Config

Targets

    • Target

      Yeni Metin Belgesi.txt

    • Size

      18B

    • MD5

      4cda4f278683f4f1dcd4069994c83fed

    • SHA1

      d2c5036c2f349d54a02a5e2be51c77353914d9e0

    • SHA256

      13e504a9b415d995f6f6d270e14f010d204965050ca10c6e63813f520b89fb19

    • SHA512

      beb1cf12705f26266f0564745125565f764bafcbe1693b6da3e0110d22de12fc5390b086294bfe22a0d3633aef2f15fb83fe05ea0d660ba51fe031d004ef8924

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks