Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d0f7e1b5196772528ce410b695e2daa0N.exe

  • Size

    133KB

  • Sample

    240909-an1z6avfng

  • MD5

    d0f7e1b5196772528ce410b695e2daa0

  • SHA1

    80380bfc187b7327a99a605a44fc1d4a12984782

  • SHA256

    74be29a741738584dee133775ca5113c9e5a47ae604c1532e27b66890006cd05

  • SHA512

    dcb0687ceaef8d757c3c0217b97337aea9b725b1f1531e3dd216d76e16aabbaaf9bc0f681968645c85cf0ed29fde0a5139f668b82d1fd4139c62f732d2af49f9

  • SSDEEP

    3072:sEboFVlGAvwsgbpvYfMTc72L10fPsout6nnn:rBzsgbpvnTcyOPsoS6nnn

Score
7/10

Malware Config

Targets

    • Target

      d0f7e1b5196772528ce410b695e2daa0N.exe

    • Size

      133KB

    • MD5

      d0f7e1b5196772528ce410b695e2daa0

    • SHA1

      80380bfc187b7327a99a605a44fc1d4a12984782

    • SHA256

      74be29a741738584dee133775ca5113c9e5a47ae604c1532e27b66890006cd05

    • SHA512

      dcb0687ceaef8d757c3c0217b97337aea9b725b1f1531e3dd216d76e16aabbaaf9bc0f681968645c85cf0ed29fde0a5139f668b82d1fd4139c62f732d2af49f9

    • SSDEEP

      3072:sEboFVlGAvwsgbpvYfMTc72L10fPsout6nnn:rBzsgbpvnTcyOPsoS6nnn

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks