Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

28ccd7b127...03.exe

windows7-x64

10

28ccd7b127...03.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28ccd7b1279c4a408f3a7296e62717a706fd16aefc1253638d963bf2c6a56903

  • Size

    55KB

  • Sample

    240828-yz5z9awamn

  • MD5

    17cebf3f5770e4d44203f5d74e071b4d

  • SHA1

    70ebcd7f123a7d384ec6b8ac85aba6f6ac9df29f

  • SHA256

    28ccd7b1279c4a408f3a7296e62717a706fd16aefc1253638d963bf2c6a56903

  • SHA512

    2db0ebb99dbade1a94af72eb76945f6d716e05ddf87c24c0ff496aef8c2d1b6bf3b592add5a8c2e4516b09028416eb55c9f6147ee776bfdde7ad1660a4f9dd8c

  • SSDEEP

    1536:OlnaE63Pbl5z+9G2xctuXvByIJN8NSoNSd0A3shxD6:saE63PPhawseNXNW0A8hh

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      28ccd7b1279c4a408f3a7296e62717a706fd16aefc1253638d963bf2c6a56903

    • Size

      55KB

    • MD5

      17cebf3f5770e4d44203f5d74e071b4d

    • SHA1

      70ebcd7f123a7d384ec6b8ac85aba6f6ac9df29f

    • SHA256

      28ccd7b1279c4a408f3a7296e62717a706fd16aefc1253638d963bf2c6a56903

    • SHA512

      2db0ebb99dbade1a94af72eb76945f6d716e05ddf87c24c0ff496aef8c2d1b6bf3b592add5a8c2e4516b09028416eb55c9f6147ee776bfdde7ad1660a4f9dd8c

    • SSDEEP

      1536:OlnaE63Pbl5z+9G2xctuXvByIJN8NSoNSd0A3shxD6:saE63PPhawseNXNW0A8hh

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks