Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702
-
Size
16KB
-
Sample
241014-dxjn1sxcke
-
MD5
0abb0a370539efc06f2858e2d752aa0f
-
SHA1
abfc61b974c76340715e4ae3b44b969333bf2975
-
SHA256
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702
-
SHA512
470e502dfb1e9df6fd76c334eaddfecff0d81798d2bf143e6b9879d61d8352cad30d9d97fe5eb85e9c44b076eff4d82345755906410cb3c9a8a24bb3f44b8d6b
-
SSDEEP
96:alV/7aG0bHNtH8is0yJ79johIeA3qtiAg5r43w0vHzNt:ssN2isL3ohlA3qtiAiewUR
Static task
static1
Behavioral task
behavioral1
Sample
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702
-
Size
16KB
-
MD5
0abb0a370539efc06f2858e2d752aa0f
-
SHA1
abfc61b974c76340715e4ae3b44b969333bf2975
-
SHA256
c284d1179a3a94398675fa702482ad196a06c8bbde7bcd1dc12af65d4c63c702
-
SHA512
470e502dfb1e9df6fd76c334eaddfecff0d81798d2bf143e6b9879d61d8352cad30d9d97fe5eb85e9c44b076eff4d82345755906410cb3c9a8a24bb3f44b8d6b
-
SSDEEP
96:alV/7aG0bHNtH8is0yJ79johIeA3qtiAg5r43w0vHzNt:ssN2isL3ohlA3qtiAiewUR
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Accesses Microsoft Outlook profiles
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-