Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Start11v2-setup.exe
-
Size
50.8MB
-
Sample
240807-rhlrqazbpm
-
MD5
8a8807ef9819d7660a37d8aef458a7c1
-
SHA1
eb2dda7ed971da47d732407ea7858b079b653d08
-
SHA256
5c7bbf60c683c00cba97eae5821a4225872a9a8c26ed92e3a97f246ba4867f77
-
SHA512
76e4a484e08d49d256ba6c3f404a75220cacd266c6d71fa1be7f78babe7c3817bf3adfe9c2b27a9e2dba37ee68afcc26f45077c51cd547b85897b3a5762f5b5f
-
SSDEEP
1572864:DzYkicgwIHrUj1Po1DhW7bs5tbbsO/PBvx:HYkahHrUjFUW/Ib35
Malware Config
Targets
-
-
Target
Start11v2-setup.exe
-
Size
50.8MB
-
MD5
8a8807ef9819d7660a37d8aef458a7c1
-
SHA1
eb2dda7ed971da47d732407ea7858b079b653d08
-
SHA256
5c7bbf60c683c00cba97eae5821a4225872a9a8c26ed92e3a97f246ba4867f77
-
SHA512
76e4a484e08d49d256ba6c3f404a75220cacd266c6d71fa1be7f78babe7c3817bf3adfe9c2b27a9e2dba37ee68afcc26f45077c51cd547b85897b3a5762f5b5f
-
SSDEEP
1572864:DzYkicgwIHrUj1Po1DhW7bs5tbbsO/PBvx:HYkahHrUjFUW/Ib35
Score7/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
MITRE ATT&CK Enterprise v15
Persistence
Event Triggered Execution
2Change Default File Association
1Component Object Model Hijacking
1Privilege Escalation
Event Triggered Execution
2Change Default File Association
1Component Object Model Hijacking
1Defense Evasion
Modify Registry
3Subvert Trust Controls
1Install Root Certificate
1