Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

2024-08-24...er.exe

windows7-x64

8

2024-08-24...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-08-24_57defb4ee21675dc9253ca48db26aa35_avoslocker

  • Size

    4.5MB

  • Sample

    240824-ll7kpswbjn

  • MD5

    57defb4ee21675dc9253ca48db26aa35

  • SHA1

    6e653f020e156878d375f7bb113a573979be07df

  • SHA256

    2867c0a58e1bd6bca95afd4bc995984c7d9192da0530e18ce28d1deda8b08e7b

  • SHA512

    5695783c4d359dac037408d8d61595c5cf7726606f1e1a247400812adf04eda650d4ee35a8992a36eaadce3b56d51e8df7d1ecf985de9b58b42a94c124daa9d2

  • SSDEEP

    98304:jWqq+Mb+yyWv5rIy5YFWAvwznJ5wkroFYY/YfthXBxfZr7TQxnTmnwZ:jWaTWvpIy5YPvwznWFTk/3BrgJTmwZ

Score
8/10
bootkitdiscoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      2024-08-24_57defb4ee21675dc9253ca48db26aa35_avoslocker

    • Size

      4.5MB

    • MD5

      57defb4ee21675dc9253ca48db26aa35

    • SHA1

      6e653f020e156878d375f7bb113a573979be07df

    • SHA256

      2867c0a58e1bd6bca95afd4bc995984c7d9192da0530e18ce28d1deda8b08e7b

    • SHA512

      5695783c4d359dac037408d8d61595c5cf7726606f1e1a247400812adf04eda650d4ee35a8992a36eaadce3b56d51e8df7d1ecf985de9b58b42a94c124daa9d2

    • SSDEEP

      98304:jWqq+Mb+yyWv5rIy5YFWAvwznJ5wkroFYY/YfthXBxfZr7TQxnTmnwZ:jWaTWvpIy5YPvwznWFTk/3BrgJTmwZ

    Score
    8/10
    bootkitdiscoveryevasionpersistencetrojan

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

      evasiontrojan

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks