Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Rainway_Install.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Rainway_Installer.zip

  • Size

    142.7MB

  • Sample

    240810-xxy89axgnc

  • MD5

    f05e35bd36a86e3e026f7542846c86d0

  • SHA1

    83e4a8c9c74f9e84eccc516300539ced777abf7f

  • SHA256

    701363ecf4b9d3d1e6f6c1ea457d834c89ea2270317a2b4850c77e80868f5bb5

  • SHA512

    7bf780a9c84acacd99a8f7173fc733479cb8bb53a30c7192ab26b37eb6526b9a96491b9d9360c61b55689ac4556374e873340196c9484b6fc814e76b0a65bc76

  • SSDEEP

    3145728:6V7dRLFCuAknKWFr7QfPmlUJ4C8N0mNvKBHe:6V7DDnlHlUWN0/BHe

Score
7/10
discovery

Malware Config

Targets

    • Target

      Rainway_Install.exe

    • Size

      1.7MB

    • MD5

      ad4754db135f7eda022c773a4f11964e

    • SHA1

      99772e856db59c805fd8b89655c58f7774b18401

    • SHA256

      db1e4d06304ed0691430743df480a697818b8b280433010991e07e1462a27e5f

    • SHA512

      1fcf59e62a530c31f740f5ea132fdf0532f7bec7373ff9923e123771fecab6b2e274b5034bfd6f7953fb8259fb47f51d0c8d4cc15f87ff9dde736c5c71777853

    • SSDEEP

      24576:h7FUDowAyrTVE3U5FrBhJN/4QRdZ+Ile0d4JnlfJQzT3Nr1WRB0t9nC6kzPG:hBuZrEUP/RdFgo4JlBUTh4vrdzPG

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks