Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

oxhzulzwrt.exe

windows7-x64

8

oxhzulzwrt.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    oxhzulzwrt.exe

  • Size

    137KB

  • Sample

    240908-np4pbswdmb

  • MD5

    a7c87a3414b9f40f48700c10391d5980

  • SHA1

    97e195564d3b1b394e730d2cbe0369243c81149d

  • SHA256

    b959398a698e3e7b4b18306724d9aa2d697956c6a160725f6d9a3a1c0699a1d4

  • SHA512

    e4c3ae8a84679d8c05eacd160048bf98046fe25efab16e12c3759f1314f14930c8127a640af29ac0d85cd83e073775a384dfa474cc4d1cf5a3935229d506358e

  • SSDEEP

    1536:0hYSOk+ac5boqXL6QozPIb/umpVvLX48JV0TdpHu4Eo5n1xesW+cd1GdxZbShX:06ZGQGgru+vLxJYnng1YxYX

Score
8/10
bootkitdiscoveryevasionpersistence

Malware Config

Targets

    • Target

      oxhzulzwrt.exe

    • Size

      137KB

    • MD5

      a7c87a3414b9f40f48700c10391d5980

    • SHA1

      97e195564d3b1b394e730d2cbe0369243c81149d

    • SHA256

      b959398a698e3e7b4b18306724d9aa2d697956c6a160725f6d9a3a1c0699a1d4

    • SHA512

      e4c3ae8a84679d8c05eacd160048bf98046fe25efab16e12c3759f1314f14930c8127a640af29ac0d85cd83e073775a384dfa474cc4d1cf5a3935229d506358e

    • SSDEEP

      1536:0hYSOk+ac5boqXL6QozPIb/umpVvLX48JV0TdpHu4Eo5n1xesW+cd1GdxZbShX:06ZGQGgru+vLxJYnng1YxYX

    Score
    8/10
    bootkitdiscoveryevasionpersistence

    • Disables Task Manager via registry modification

      evasion

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks