13e504a9b415d995f6f6d270e14f010d204965050ca10c6e63813f520b89fb19 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

Yeni Metin...si.txt

windows7-x64

8

Yeni Metin...si.txt

windows10-2004-x64

1

Sharing

General

Target

Yeni Metin Belgesi.txt
Size

18B
Sample

240802-vty3zaxemd
MD5

4cda4f278683f4f1dcd4069994c83fed
SHA1

d2c5036c2f349d54a02a5e2be51c77353914d9e0
SHA256

13e504a9b415d995f6f6d270e14f010d204965050ca10c6e63813f520b89fb19
SHA512

beb1cf12705f26266f0564745125565f764bafcbe1693b6da3e0110d22de12fc5390b086294bfe22a0d3633aef2f15fb83fe05ea0d660ba51fe031d004ef8924

Score

8^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

Yeni Metin Belgesi.txt

Resource

win7-20240704-en

discovery persistence

windows7-x64

20 signatures

300 seconds

Behavioral task

behavioral2

Sample

Yeni Metin Belgesi.txt

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Malware Config

Targets

- Target
  
  Yeni Metin Belgesi.txt
- Size
  
  18B
- MD5
  
  4cda4f278683f4f1dcd4069994c83fed
- SHA1
  
  d2c5036c2f349d54a02a5e2be51c77353914d9e0
- SHA256
  
  13e504a9b415d995f6f6d270e14f010d204965050ca10c6e63813f520b89fb19
- SHA512
  
  beb1cf12705f26266f0564745125565f764bafcbe1693b6da3e0110d22de12fc5390b086294bfe22a0d3633aef2f15fb83fe05ea0d660ba51fe031d004ef8924
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

© 2018-2025

Terms | Privacy