Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

5

03a992c1c4...6d.exe

windows7-x64

7

03a992c1c4...6d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03a992c1c4464c9e4ec73ddea7548f7db8865cd60cba143236fec68e4f48946d

  • Size

    2.6MB

  • Sample

    240929-25qdjavekm

  • MD5

    6d2a81a47521d781be5c1bf955b787e0

  • SHA1

    1f0459a18c3e6d7c011ccc6662563e197f76fcf0

  • SHA256

    03a992c1c4464c9e4ec73ddea7548f7db8865cd60cba143236fec68e4f48946d

  • SHA512

    445b1cc094c38ff53a818e6d4a2db0fa6e6dd72146c327de3e577af1c0f87fba774100c14e41b4091487e638aa9627242f7c70384588e43d4753113ee4187ede

  • SSDEEP

    49152:nTGkQD5QZuTtS0rQMYOQ+q8CEFTG4QXTGHQl9KFeMU:nKk8WsM0r1QnuK4yKHy0Fe5

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      03a992c1c4464c9e4ec73ddea7548f7db8865cd60cba143236fec68e4f48946d

    • Size

      2.6MB

    • MD5

      6d2a81a47521d781be5c1bf955b787e0

    • SHA1

      1f0459a18c3e6d7c011ccc6662563e197f76fcf0

    • SHA256

      03a992c1c4464c9e4ec73ddea7548f7db8865cd60cba143236fec68e4f48946d

    • SHA512

      445b1cc094c38ff53a818e6d4a2db0fa6e6dd72146c327de3e577af1c0f87fba774100c14e41b4091487e638aa9627242f7c70384588e43d4753113ee4187ede

    • SSDEEP

      49152:nTGkQD5QZuTtS0rQMYOQ+q8CEFTG4QXTGHQl9KFeMU:nKk8WsM0r1QnuK4yKHy0Fe5

    Score
    7/10
    discoveryupx

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks