Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

5b7d1a48ac...94.exe

windows7-x64

8

5b7d1a48ac...94.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5b7d1a48ac05e8b2c6cd200a641ba0acd870a4f65f178d4dfa92762621fef894

  • Size

    3.7MB

  • Sample

    240903-18ssdsyejk

  • MD5

    c31462f1b1bd64a8b27ea1d396870011

  • SHA1

    37a5c2c590164eda5258010ec5e4b49d541e7a65

  • SHA256

    5b7d1a48ac05e8b2c6cd200a641ba0acd870a4f65f178d4dfa92762621fef894

  • SHA512

    63bd204e0985152b9e380f2471c0bce545ef242200a7ac6a426c35ba3336a77beef35b43a0ec6f2e0b23d32a07a1f141b556c4a9591e71d4724bdc2912697d33

  • SSDEEP

    98304:jamC2MkcH7PJlIXpHKvIeFebLUZ4pv4pnY:4wKPJIpHKveLU+pv4y

Score
8/10
discoverypersistenceprivilege_escalationvmprotect

Malware Config

Targets

    • Target

      5b7d1a48ac05e8b2c6cd200a641ba0acd870a4f65f178d4dfa92762621fef894

    • Size

      3.7MB

    • MD5

      c31462f1b1bd64a8b27ea1d396870011

    • SHA1

      37a5c2c590164eda5258010ec5e4b49d541e7a65

    • SHA256

      5b7d1a48ac05e8b2c6cd200a641ba0acd870a4f65f178d4dfa92762621fef894

    • SHA512

      63bd204e0985152b9e380f2471c0bce545ef242200a7ac6a426c35ba3336a77beef35b43a0ec6f2e0b23d32a07a1f141b556c4a9591e71d4724bdc2912697d33

    • SSDEEP

      98304:jamC2MkcH7PJlIXpHKvIeFebLUZ4pv4pnY:4wKPJIpHKveLU+pv4y

    Score
    8/10
    discoverypersistenceprivilege_escalationvmprotect

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks