Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

ece4b7f046...0N.exe

windows7-x64

10

ece4b7f046...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ece4b7f0461c0eeb17e69e876653aa20N.exe

  • Size

    256KB

  • Sample

    240905-jya16awcpm

  • MD5

    ece4b7f0461c0eeb17e69e876653aa20

  • SHA1

    831fdec65ff6d966be9e31738dc21d7a40951f91

  • SHA256

    9f52284dc7d7c1fe2b45530f731b8c431439968efbf2ac03a5a74828d109dced

  • SHA512

    d763e50164883a095406a4ef3eca68f81cdf3840dfe313c598d68c75eef7d94d642314571db7fe9b0af2142b01271caff24f287c83c167393feccb281e76ace8

  • SSDEEP

    3072:9lGiRW6Wf+diWI2VceK3KcWmjRrzqzWspSnocyA5qKcWmjRrzeceKSAxpce7fuF9:zmB2diW3HVpaopOpHVILifyeYVDcfR

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ece4b7f0461c0eeb17e69e876653aa20N.exe

    • Size

      256KB

    • MD5

      ece4b7f0461c0eeb17e69e876653aa20

    • SHA1

      831fdec65ff6d966be9e31738dc21d7a40951f91

    • SHA256

      9f52284dc7d7c1fe2b45530f731b8c431439968efbf2ac03a5a74828d109dced

    • SHA512

      d763e50164883a095406a4ef3eca68f81cdf3840dfe313c598d68c75eef7d94d642314571db7fe9b0af2142b01271caff24f287c83c167393feccb281e76ace8

    • SSDEEP

      3072:9lGiRW6Wf+diWI2VceK3KcWmjRrzqzWspSnocyA5qKcWmjRrzeceKSAxpce7fuF9:zmB2diW3HVpaopOpHVILifyeYVDcfR

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks