Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

d76f13f9c9...7N.exe

windows7-x64

8

d76f13f9c9...7N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d76f13f9c96d975726d7753daca79dd08bb0644082705d90ed8b52dcabbe6f67N

  • Size

    81KB

  • Sample

    241004-ezx5vsthjr

  • MD5

    1c6c939a0f9dc785a99080a60d049c70

  • SHA1

    a7ab4bdb9786c31b7e31ffb45d361837f7cc0aa2

  • SHA256

    d76f13f9c96d975726d7753daca79dd08bb0644082705d90ed8b52dcabbe6f67

  • SHA512

    dc8f14d00a4fc77d095833c46fe2c0618d6f88445e3c375f140d34fa8119a098061c65bb3d443d6a4c9f223be909567437952c8a6a4c52b5c77f8b52fcc3b04f

  • SSDEEP

    1536:RoG6KpY6Qi3yj2wyq4HwiMO10HVLCJRpsWr6cdaJPBJYYf7AuxI:LenkyfPAwiMq0RqRfbaJZJYYfkT

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      d76f13f9c96d975726d7753daca79dd08bb0644082705d90ed8b52dcabbe6f67N

    • Size

      81KB

    • MD5

      1c6c939a0f9dc785a99080a60d049c70

    • SHA1

      a7ab4bdb9786c31b7e31ffb45d361837f7cc0aa2

    • SHA256

      d76f13f9c96d975726d7753daca79dd08bb0644082705d90ed8b52dcabbe6f67

    • SHA512

      dc8f14d00a4fc77d095833c46fe2c0618d6f88445e3c375f140d34fa8119a098061c65bb3d443d6a4c9f223be909567437952c8a6a4c52b5c77f8b52fcc3b04f

    • SSDEEP

      1536:RoG6KpY6Qi3yj2wyq4HwiMO10HVLCJRpsWr6cdaJPBJYYf7AuxI:LenkyfPAwiMq0RqRfbaJZJYYfkT

    Score
    8/10
    discoverypersistence

    • Manipulates Digital Signatures

      Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.

    • Sets service image path in registry

      persistence

    • Downloads MZ/PE file

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks