Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    OldNewExplorer64.dll

  • Size

    255KB

  • Sample

    240817-3t7dcawhnr

  • MD5

    fcf194e3b9101064939a000075149f29

  • SHA1

    7a3767dabba5368da9092ea17b0dcbdd23b23bfb

  • SHA256

    21e76d101c19571d254e649c86f2588c7a46e7fb8f0911880ebbbadc7acf4d18

  • SHA512

    e3fc693f1e7f7ac80d45f3b3d6df6c659f8e5aca5ef02d6a020d351927b684f71be4aba7c27aca2f82893cd98f431a89b21f5e78a7c35207964b161749fc4d24

  • SSDEEP

    6144:Bq55rea+EvK+Evx+EvU+EN+EvH+Evb+Ev6NZN/No+Ev1+EvZ+EvS+Ef+EvZ+EvlG:Bq5E

Malware Config

Targets

    • Target

      OldNewExplorer64.dll

    • Size

      255KB

    • MD5

      fcf194e3b9101064939a000075149f29

    • SHA1

      7a3767dabba5368da9092ea17b0dcbdd23b23bfb

    • SHA256

      21e76d101c19571d254e649c86f2588c7a46e7fb8f0911880ebbbadc7acf4d18

    • SHA512

      e3fc693f1e7f7ac80d45f3b3d6df6c659f8e5aca5ef02d6a020d351927b684f71be4aba7c27aca2f82893cd98f431a89b21f5e78a7c35207964b161749fc4d24

    • SSDEEP

      6144:Bq55rea+EvK+Evx+EvU+EN+EvH+Evb+Ev6NZN/No+Ev1+EvZ+EvS+Ef+EvZ+EvlG:Bq5E

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks