Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

  • Size

    3.0MB

  • Sample

    240907-zr6r9axdmg

  • MD5

    f11fd043f1263a6f3d92b8d5b3a40959

  • SHA1

    a1fc5a7aace39cb0c1de8b01779255960486f31f

  • SHA256

    410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

  • SHA512

    a5a43652120c1142db823598c9302eb646265b1b2fed5bed9d92a3485c861ff6b5f7de56a1df631fd6b9d4c6f5b7111e35a51db2e28c6ed7e37c57a601166954

  • SSDEEP

    49152:GtSL8K3mO+3LZT06JKFoCfwxpdFx7OFCrPYVGwv5Mv2xplBVeH:MSYym3LZ5/KGdFxBKw2xr4

Malware Config

Targets

    • Target

      410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

    • Size

      3.0MB

    • MD5

      f11fd043f1263a6f3d92b8d5b3a40959

    • SHA1

      a1fc5a7aace39cb0c1de8b01779255960486f31f

    • SHA256

      410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

    • SHA512

      a5a43652120c1142db823598c9302eb646265b1b2fed5bed9d92a3485c861ff6b5f7de56a1df631fd6b9d4c6f5b7111e35a51db2e28c6ed7e37c57a601166954

    • SSDEEP

      49152:GtSL8K3mO+3LZT06JKFoCfwxpdFx7OFCrPYVGwv5Mv2xplBVeH:MSYym3LZ5/KGdFxBKw2xr4

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks