Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

YogaDNSSetup.exe

windows7-x64

8

YogaDNSSetup.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    YogaDNSSetup.exe

  • Size

    8.0MB

  • Sample

    241012-nrfqaashjk

  • MD5

    a1780f92321a1857505752a53888cebb

  • SHA1

    77bb3b55f2704a50d9b8b3c67e5b2e57ad9824ed

  • SHA256

    483e99a23d9348f63deab43c8f0c09afb2af9ca313ce401e27b9e31aeba7eb63

  • SHA512

    b5b61b3be90d3952bbd4bf43bf383bab56c7de88afe4057990c8e1d238bece54781b9701b615c7a27d6bcc1ad6ebd537eb3a7be2c9a9df094c290c3d84bb4f15

  • SSDEEP

    196608:RbfgBIO7uGevAeadYrsrnql79gG8l/oEqns:Vw9headYozql7Glgps

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      YogaDNSSetup.exe

    • Size

      8.0MB

    • MD5

      a1780f92321a1857505752a53888cebb

    • SHA1

      77bb3b55f2704a50d9b8b3c67e5b2e57ad9824ed

    • SHA256

      483e99a23d9348f63deab43c8f0c09afb2af9ca313ce401e27b9e31aeba7eb63

    • SHA512

      b5b61b3be90d3952bbd4bf43bf383bab56c7de88afe4057990c8e1d238bece54781b9701b615c7a27d6bcc1ad6ebd537eb3a7be2c9a9df094c290c3d84bb4f15

    • SSDEEP

      196608:RbfgBIO7uGevAeadYrsrnql79gG8l/oEqns:Vw9headYozql7Glgps

    Score
    8/10
    discoverypersistence

    • Drops file in Drivers directory

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks