Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ARTeam IconChanger.exe

  • Size

    9KB

  • Sample

    241003-t6sw2svhlk

  • MD5

    c07deeaec6489437e2dd07c444aca614

  • SHA1

    88133a33a7f2cbc95445718521027c84bd2ffc2c

  • SHA256

    54d6bd8495e9b3fb3348e684b98e3e9de01643008afe8cddd541546e114c32da

  • SHA512

    0ef4ad142ff38b359d95527a4a76890cc551210b8c54d26189adda45bde4679f31cebe5e2a82cd6ab9f0cb9878fc9714ee86fa7f97160948724927256013c734

  • SSDEEP

    96:VLJLUKvPwq0v6b1ktjlokPhzrk6gcgUPtboynCP8cXI:VdL1vFT1yo03gcgUP1oyna34

Malware Config

Targets

    • Target

      ARTeam IconChanger.exe

    • Size

      9KB

    • MD5

      c07deeaec6489437e2dd07c444aca614

    • SHA1

      88133a33a7f2cbc95445718521027c84bd2ffc2c

    • SHA256

      54d6bd8495e9b3fb3348e684b98e3e9de01643008afe8cddd541546e114c32da

    • SHA512

      0ef4ad142ff38b359d95527a4a76890cc551210b8c54d26189adda45bde4679f31cebe5e2a82cd6ab9f0cb9878fc9714ee86fa7f97160948724927256013c734

    • SSDEEP

      96:VLJLUKvPwq0v6b1ktjlokPhzrk6gcgUPtboynCP8cXI:VdL1vFT1yo03gcgUP1oyna34

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks