Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

9a4c4787a4...6N.dll

windows7-x64

7

9a4c4787a4...6N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a4c4787a49fea86e5efcf4f25756691739986a03d33ae56aeafa0f7d9390986N

  • Size

    72KB

  • Sample

    240919-t26bksydjg

  • MD5

    e4e0f1e906438fa35d1fba77c103f7a0

  • SHA1

    5d8982e0044de448851ef215756fa32acc8b12c1

  • SHA256

    9a4c4787a49fea86e5efcf4f25756691739986a03d33ae56aeafa0f7d9390986

  • SHA512

    f408601cce851e4fefefffec7dbd38d7e0e77ff4ac86aef7ad44a571c8d11887129a53ecf871e6cf4a17b276e5f5ea3b4f710cebbad1ef17ef9ea91115eb3f9d

  • SSDEEP

    768:lojY9PtWmb1MwqHmwmsZMpRwqKbGhPRDUsoRyHKVojY9PO56KDPHc9IPv2tBUFq0:wm1WKTqHmkhGPoRyHKAmE8IP0+MYHMm

Score
10/10
discoveryevasion

Malware Config

Targets

    • Target

      9a4c4787a49fea86e5efcf4f25756691739986a03d33ae56aeafa0f7d9390986N

    • Size

      72KB

    • MD5

      e4e0f1e906438fa35d1fba77c103f7a0

    • SHA1

      5d8982e0044de448851ef215756fa32acc8b12c1

    • SHA256

      9a4c4787a49fea86e5efcf4f25756691739986a03d33ae56aeafa0f7d9390986

    • SHA512

      f408601cce851e4fefefffec7dbd38d7e0e77ff4ac86aef7ad44a571c8d11887129a53ecf871e6cf4a17b276e5f5ea3b4f710cebbad1ef17ef9ea91115eb3f9d

    • SSDEEP

      768:lojY9PtWmb1MwqHmwmsZMpRwqKbGhPRDUsoRyHKVojY9PO56KDPHc9IPv2tBUFq0:wm1WKTqHmkhGPoRyHKAmE8IP0+MYHMm

    Score
    10/10
    discoveryevasion

    • Modifies firewall policy service

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks