Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f
-
Size
129KB
-
Sample
240928-3yz5tsvbnf
-
MD5
d119e378b5bd8a5352131c1940bffd78
-
SHA1
437ad2e573a7d3fc55679a5dd859b0a483f2aa37
-
SHA256
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f
-
SHA512
ecbfee8f6693f3fd9087aeefa5c92ac61a47f231eb30f08bbf345722200d6e68a201906512f867f35152ec0f1f47140c1c4225aa6b88b0440feff760b1739c55
-
SSDEEP
1536:9Zx8gcK8ossZDulaPnPuhkvJJth5SLnouy8uQkgB54vm:9Zx8gJscuAnU+JYoutueXl
Behavioral task
behavioral1
Sample
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f
-
Size
129KB
-
MD5
d119e378b5bd8a5352131c1940bffd78
-
SHA1
437ad2e573a7d3fc55679a5dd859b0a483f2aa37
-
SHA256
838b6c6eee4f261fa8848009180dc4b37f0b3b57835c1619ad62603f6861aa3f
-
SHA512
ecbfee8f6693f3fd9087aeefa5c92ac61a47f231eb30f08bbf345722200d6e68a201906512f867f35152ec0f1f47140c1c4225aa6b88b0440feff760b1739c55
-
SSDEEP
1536:9Zx8gcK8ossZDulaPnPuhkvJJth5SLnouy8uQkgB54vm:9Zx8gJscuAnU+JYoutueXl
Score10/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5