Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    source_prepared.exe

  • Size

    102.9MB

  • Sample

    241129-ar22mawmc1

  • MD5

    f0cf711a8c7a41ac9c342aa53a7628f8

  • SHA1

    b0839d815ac31cfb3882d6d3adc46ad4a180024a

  • SHA256

    4de1944bcb4d350ca0a273532fbbca28defd46af1098a555fd550d76429991ef

  • SHA512

    cd228e86776383d79d9cfcf05afaf3ee2e25c94776e0bc8a170ff7e6fd7c6dacdd2a390827affc1a3aaa3ccf5cf253aa451ea30b10ed167c8270e9dd0253ae44

  • SSDEEP

    3145728:/nGXaCRrS6xjKcBanL2qHO5iVAunGQbRe0zJcBahZ2:+XFZSWNaBHCin1XcBt

Malware Config

Targets

    • Target

      source_prepared.exe

    • Size

      102.9MB

    • MD5

      f0cf711a8c7a41ac9c342aa53a7628f8

    • SHA1

      b0839d815ac31cfb3882d6d3adc46ad4a180024a

    • SHA256

      4de1944bcb4d350ca0a273532fbbca28defd46af1098a555fd550d76429991ef

    • SHA512

      cd228e86776383d79d9cfcf05afaf3ee2e25c94776e0bc8a170ff7e6fd7c6dacdd2a390827affc1a3aaa3ccf5cf253aa451ea30b10ed167c8270e9dd0253ae44

    • SSDEEP

      3145728:/nGXaCRrS6xjKcBanL2qHO5iVAunGQbRe0zJcBahZ2:+XFZSWNaBHCin1XcBt

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks