Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    test4.bat

  • Size

    8KB

  • Sample

    240814-dgzejazgln

  • MD5

    94a014af3a4d1d428029d50d59777a2b

  • SHA1

    041aaa9003e6c8b9b978ae4c818359f2282dbcee

  • SHA256

    285bcd21d57064b349db7b8a853bbc6d4947a0c627760db5d7803a9f2d71374a

  • SHA512

    6cede67cfab078752e9c72b402735d17cb0eabbc02b5a176b819eb7e8560c54a6ee54f59cc39e2ee4566f6d0d74683e733016bd7a60c0efc5c384010f21797c3

  • SSDEEP

    96:WjfLtYHXoWaTj++V+m/sewag3XdZSBGn4sn0KYbWLM6Xn9RSWRMcl2z/wwxKlnHr:WTLtYH4fEmEdN40/o5LTsA4

Malware Config

Targets

    • Target

      test4.bat

    • Size

      8KB

    • MD5

      94a014af3a4d1d428029d50d59777a2b

    • SHA1

      041aaa9003e6c8b9b978ae4c818359f2282dbcee

    • SHA256

      285bcd21d57064b349db7b8a853bbc6d4947a0c627760db5d7803a9f2d71374a

    • SHA512

      6cede67cfab078752e9c72b402735d17cb0eabbc02b5a176b819eb7e8560c54a6ee54f59cc39e2ee4566f6d0d74683e733016bd7a60c0efc5c384010f21797c3

    • SSDEEP

      96:WjfLtYHXoWaTj++V+m/sewag3XdZSBGn4sn0KYbWLM6Xn9RSWRMcl2z/wwxKlnHr:WTLtYH4fEmEdN40/o5LTsA4

    • Modifies Windows Defender Real-time Protection settings

    • Modifies Windows Defender notification settings

    • Modifies security service

    • Blocklisted process makes network request

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Modifies Security services

      Modifies the startup behavior of a security service.

MITRE ATT&CK Enterprise v15

Tasks