Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Virus.Hija...fd.exe

windows7-x64

1

Virus.Hija...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe

  • Size

    448KB

  • Sample

    240907-pq4w6avdrm

  • MD5

    b37a033e1a0ed7a90a099c91135550fd

  • SHA1

    a6407346b14553e9173fcdba63c98778979da96f

  • SHA256

    ee4f33d5662d985ec3c641934ab88812f05606eb2da5aceaaa5aaf4c67a0d93b

  • SHA512

    7a290ea5ac1d8f959f8e9fd61e04c5ab2dc4a6823c7e988f5bd97249003ec7b4eb4e4036f625feae22d981e5ac7de95e96210af421646a9a8b9232a073c818a4

  • SSDEEP

    6144:aJiO6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAH9SKzuZ:3705kWM/9J6gqGBf/sAHZHbgdhgi

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe

    • Size

      448KB

    • MD5

      b37a033e1a0ed7a90a099c91135550fd

    • SHA1

      a6407346b14553e9173fcdba63c98778979da96f

    • SHA256

      ee4f33d5662d985ec3c641934ab88812f05606eb2da5aceaaa5aaf4c67a0d93b

    • SHA512

      7a290ea5ac1d8f959f8e9fd61e04c5ab2dc4a6823c7e988f5bd97249003ec7b4eb4e4036f625feae22d981e5ac7de95e96210af421646a9a8b9232a073c818a4

    • SSDEEP

      6144:aJiO6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAH9SKzuZ:3705kWM/9J6gqGBf/sAHZHbgdhgi

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks