Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

410ad42c40...00.exe

windows7-x64

7

410ad42c40...00.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

  • Size

    3.0MB

  • Sample

    240907-zr6r9axdmg

  • MD5

    f11fd043f1263a6f3d92b8d5b3a40959

  • SHA1

    a1fc5a7aace39cb0c1de8b01779255960486f31f

  • SHA256

    410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

  • SHA512

    a5a43652120c1142db823598c9302eb646265b1b2fed5bed9d92a3485c861ff6b5f7de56a1df631fd6b9d4c6f5b7111e35a51db2e28c6ed7e37c57a601166954

  • SSDEEP

    49152:GtSL8K3mO+3LZT06JKFoCfwxpdFx7OFCrPYVGwv5Mv2xplBVeH:MSYym3LZ5/KGdFxBKw2xr4

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

    • Size

      3.0MB

    • MD5

      f11fd043f1263a6f3d92b8d5b3a40959

    • SHA1

      a1fc5a7aace39cb0c1de8b01779255960486f31f

    • SHA256

      410ad42c401d2c43db5977b49ca27b24f6172ce478a6d4a20d7edc9e60f25000

    • SHA512

      a5a43652120c1142db823598c9302eb646265b1b2fed5bed9d92a3485c861ff6b5f7de56a1df631fd6b9d4c6f5b7111e35a51db2e28c6ed7e37c57a601166954

    • SSDEEP

      49152:GtSL8K3mO+3LZT06JKFoCfwxpdFx7OFCrPYVGwv5Mv2xplBVeH:MSYym3LZ5/KGdFxBKw2xr4

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks