Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71N
-
Size
796KB
-
Sample
241025-26w8gawcqg
-
MD5
5474328b0ce5dee5f045e6b9252daff0
-
SHA1
61c228a3920ae2d398d24804267dbda62b17abe6
-
SHA256
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71
-
SHA512
0f42d49a326d9d1e2168aa70b65e7e4f0136455b6b8911e3d233fc16440a6afd604c6fdad48ef9bb78575b70b4e4c7546b6d8d57dd00b7ffc086f44f5802ada2
-
SSDEEP
12288:j2JylsKTzsBeD53KoNw+bCUKklI9ufQ2XqJmrsZq4ZiohfzFq6h:j2JyxUBe95Nw+bJ3lI9uB/48Ubh
Static task
static1
Behavioral task
behavioral1
Sample
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71N
-
Size
796KB
-
MD5
5474328b0ce5dee5f045e6b9252daff0
-
SHA1
61c228a3920ae2d398d24804267dbda62b17abe6
-
SHA256
e13acc8511ff9e1ba309e6aeb8c468da19ff3f5469c897ef57f02d30b4206c71
-
SHA512
0f42d49a326d9d1e2168aa70b65e7e4f0136455b6b8911e3d233fc16440a6afd604c6fdad48ef9bb78575b70b4e4c7546b6d8d57dd00b7ffc086f44f5802ada2
-
SSDEEP
12288:j2JylsKTzsBeD53KoNw+bCUKklI9ufQ2XqJmrsZq4ZiohfzFq6h:j2JyxUBe95Nw+bJ3lI9uB/48Ubh
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1