Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Drone.exe

  • Size

    10.8MB

  • Sample

    220906-ztmgdsfdfn

  • MD5

    57b60868efc4f80e6d60a7f1d58f6177

  • SHA1

    5bf0ef90b1e61ae4106f1315155f38f79e6212a0

  • SHA256

    60e560ded1b77446fb9fed3bb5b834d72ab321eceb395376f8683b0342ec8a3e

  • SHA512

    5220c803f5c738a219c08d6ba5c9588eb9107a0057e7f8cb079c5450c1ea12a07b22571a22bfefb8fa96a945f330dd67c382da2df9a588668444c9df87e917f4

  • SSDEEP

    196608:LUzUpbDO6DjzpLRUZtO0oAinb4uBJf0W8/LaLn677Sks5FpjsX9DcCui:/pb3dCEb4uBJcW8a67GlPpEiJ

Score
8/10

Malware Config

Targets

    • Target

      Drone.exe

    • Size

      10.8MB

    • MD5

      57b60868efc4f80e6d60a7f1d58f6177

    • SHA1

      5bf0ef90b1e61ae4106f1315155f38f79e6212a0

    • SHA256

      60e560ded1b77446fb9fed3bb5b834d72ab321eceb395376f8683b0342ec8a3e

    • SHA512

      5220c803f5c738a219c08d6ba5c9588eb9107a0057e7f8cb079c5450c1ea12a07b22571a22bfefb8fa96a945f330dd67c382da2df9a588668444c9df87e917f4

    • SSDEEP

      196608:LUzUpbDO6DjzpLRUZtO0oAinb4uBJf0W8/LaLn677Sks5FpjsX9DcCui:/pb3dCEb4uBJcW8a67GlPpEiJ

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks