Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d507cad068e6e54d1f370bd4b7250790N.exe

  • Size

    131KB

  • Sample

    240818-pcxwpatbke

  • MD5

    d507cad068e6e54d1f370bd4b7250790

  • SHA1

    d0d6bd0fd5d57d8904a41ab8df0cec96477763e5

  • SHA256

    dc3213c2436387f00401ce0a283229b63c3d9a58f4c12f75af6fe2e9079cf602

  • SHA512

    3eb2eb29ecfd9ab4912e7231950f36d2580d0473da785cc99ccb4ba3458b0349f52311cb2334e367954213b694ddce16ab6e6b47f077b171e2fa8763f7b3dbea

  • SSDEEP

    3072:1EboFVlGAvwsgbpvYfMTc72L10fPsout6nn:qBzsgbpvnTcyOPsoS6nn

Score
7/10

Malware Config

Targets

    • Target

      d507cad068e6e54d1f370bd4b7250790N.exe

    • Size

      131KB

    • MD5

      d507cad068e6e54d1f370bd4b7250790

    • SHA1

      d0d6bd0fd5d57d8904a41ab8df0cec96477763e5

    • SHA256

      dc3213c2436387f00401ce0a283229b63c3d9a58f4c12f75af6fe2e9079cf602

    • SHA512

      3eb2eb29ecfd9ab4912e7231950f36d2580d0473da785cc99ccb4ba3458b0349f52311cb2334e367954213b694ddce16ab6e6b47f077b171e2fa8763f7b3dbea

    • SSDEEP

      3072:1EboFVlGAvwsgbpvYfMTc72L10fPsout6nn:qBzsgbpvnTcyOPsoS6nn

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks