Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe
-
Size
448KB
-
Sample
240907-pq4w6avdrm
-
MD5
b37a033e1a0ed7a90a099c91135550fd
-
SHA1
a6407346b14553e9173fcdba63c98778979da96f
-
SHA256
ee4f33d5662d985ec3c641934ab88812f05606eb2da5aceaaa5aaf4c67a0d93b
-
SHA512
7a290ea5ac1d8f959f8e9fd61e04c5ab2dc4a6823c7e988f5bd97249003ec7b4eb4e4036f625feae22d981e5ac7de95e96210af421646a9a8b9232a073c818a4
-
SSDEEP
6144:aJiO6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAH9SKzuZ:3705kWM/9J6gqGBf/sAHZHbgdhgi
Static task
static1
Behavioral task
behavioral1
Sample
Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
Virus.Hijack.ATA_virussign.com_b37a033e1a0ed7a90a099c91135550fd.exe
-
Size
448KB
-
MD5
b37a033e1a0ed7a90a099c91135550fd
-
SHA1
a6407346b14553e9173fcdba63c98778979da96f
-
SHA256
ee4f33d5662d985ec3c641934ab88812f05606eb2da5aceaaa5aaf4c67a0d93b
-
SHA512
7a290ea5ac1d8f959f8e9fd61e04c5ab2dc4a6823c7e988f5bd97249003ec7b4eb4e4036f625feae22d981e5ac7de95e96210af421646a9a8b9232a073c818a4
-
SSDEEP
6144:aJiO6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAH9SKzuZ:3705kWM/9J6gqGBf/sAHZHbgdhgi
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Executes dropped EXE
-
Drops file in System32 directory
-