Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    77b892b6ce85a01f14da396040b04e6e.zip

  • Size

    405KB

  • Sample

    240901-arv83svbpc

  • MD5

    d91a869258d53bb632b3f7e7c6bddd74

  • SHA1

    e7d1239273b79a2eead71c1122dd6705c70f4e9f

  • SHA256

    8d95ec47526e384aee49f09ecbdd475fe66510a638056d1e0080f56ee6746d6e

  • SHA512

    f1b0564dd89dd7d557a628df7235f77a7232b48ddcfdc7fc80e68b90af0cfe2b23199e5b058abc5f191631fd672b45ec13d07359c262fd4260296bb8c98bc30a

  • SSDEEP

    12288:q3FEYT2n4OS70xO8D7UobdMKWrSynTJI4rr0F:q3FwiahnQvn9JvG

Score
10/10

Malware Config

Targets

    • Target

      6e5fa283b88a994183b4a705d77bebc77313158b5735001141e82cee2ad8e444

    • Size

      421KB

    • MD5

      77b892b6ce85a01f14da396040b04e6e

    • SHA1

      0980b62eb03f5de3ea9487196516ba9915a55ba1

    • SHA256

      6e5fa283b88a994183b4a705d77bebc77313158b5735001141e82cee2ad8e444

    • SHA512

      1825894a2408189f367c3941a1291b45fb7ca0ab0cde8ec078ce0fabc25ccafbb1940366667a3180b4a27527dc1c07db35525ac785803256897c4ed66a8339b5

    • SSDEEP

      12288:X6Wq4aaE6KwyF5L0Y2D1PqLb6Wq4aaE6KwyF5LL:1thEVaPqLBthE7

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks