Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Start11v2-setup.exe

  • Size

    50.8MB

  • Sample

    240807-rhlrqazbpm

  • MD5

    8a8807ef9819d7660a37d8aef458a7c1

  • SHA1

    eb2dda7ed971da47d732407ea7858b079b653d08

  • SHA256

    5c7bbf60c683c00cba97eae5821a4225872a9a8c26ed92e3a97f246ba4867f77

  • SHA512

    76e4a484e08d49d256ba6c3f404a75220cacd266c6d71fa1be7f78babe7c3817bf3adfe9c2b27a9e2dba37ee68afcc26f45077c51cd547b85897b3a5762f5b5f

  • SSDEEP

    1572864:DzYkicgwIHrUj1Po1DhW7bs5tbbsO/PBvx:HYkahHrUjFUW/Ib35

Malware Config

Targets

    • Target

      Start11v2-setup.exe

    • Size

      50.8MB

    • MD5

      8a8807ef9819d7660a37d8aef458a7c1

    • SHA1

      eb2dda7ed971da47d732407ea7858b079b653d08

    • SHA256

      5c7bbf60c683c00cba97eae5821a4225872a9a8c26ed92e3a97f246ba4867f77

    • SHA512

      76e4a484e08d49d256ba6c3f404a75220cacd266c6d71fa1be7f78babe7c3817bf3adfe9c2b27a9e2dba37ee68afcc26f45077c51cd547b85897b3a5762f5b5f

    • SSDEEP

      1572864:DzYkicgwIHrUj1Po1DhW7bs5tbbsO/PBvx:HYkahHrUjFUW/Ib35

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

MITRE ATT&CK Enterprise v15

Tasks