Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

8a937e3ca1...0N.exe

windows7-x64

10

8a937e3ca1...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8a937e3ca1c5977acd05a4b6ba161d90N.exe

  • Size

    273KB

  • Sample

    240805-pbswcavhkp

  • MD5

    8a937e3ca1c5977acd05a4b6ba161d90

  • SHA1

    e249c4fc234aab43f7ad48e79fffd03f91187375

  • SHA256

    844e33b69d199d19f59184e17063484b0256e3cffd81276f94bd96fa0c7d83ee

  • SHA512

    887a47f17f76d70f6fa164fba756eb37c932e02e1ae304c286a9d8b6bc12487e8a0ee65715c2a971d3dd3d1386a15c68141b1e6c96ae8af18555312c7bd3c150

  • SSDEEP

    3072:PBA+0FbTgsGH24ho1mtye3l7RpupU50EOZs24ho1mtye3laBA+0FbTgsGH24ho1G:PBMf4UsF7RpN50nZBsFaBMf4UsF

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      8a937e3ca1c5977acd05a4b6ba161d90N.exe

    • Size

      273KB

    • MD5

      8a937e3ca1c5977acd05a4b6ba161d90

    • SHA1

      e249c4fc234aab43f7ad48e79fffd03f91187375

    • SHA256

      844e33b69d199d19f59184e17063484b0256e3cffd81276f94bd96fa0c7d83ee

    • SHA512

      887a47f17f76d70f6fa164fba756eb37c932e02e1ae304c286a9d8b6bc12487e8a0ee65715c2a971d3dd3d1386a15c68141b1e6c96ae8af18555312c7bd3c150

    • SSDEEP

      3072:PBA+0FbTgsGH24ho1mtye3l7RpupU50EOZs24ho1mtye3laBA+0FbTgsGH24ho1G:PBMf4UsF7RpN50nZBsFaBMf4UsF

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks