Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c2a024729fd058655cf4206750236fd5.exe

  • Size

    309KB

  • Sample

    220910-lg2hwshhe4

  • MD5

    c2a024729fd058655cf4206750236fd5

  • SHA1

    0dbebbcebd10bdb20bf995c6512ace6e0313c3bd

  • SHA256

    88d8fcfc6330c3510cb982c908912c1a1bbd6a54365cd20980bd9f2044a217ce

  • SHA512

    7804ee180f7852a8148cd697b8fb62d85b34920d48c85a8dc29dd5cc80874c5981805b6d8c259a653ecc2563836231f89200317f0cdd5d0b551877b72cd0c12d

  • SSDEEP

    6144:eB1n3Gqplg0VPkv4curGgn/y5ieXr/hb9znMnGbDtOU8uwgN:efGqfg0VMv4/qgnKgeXr/hIG3tOEd

Malware Config

Targets

    • Target

      c2a024729fd058655cf4206750236fd5.exe

    • Size

      309KB

    • MD5

      c2a024729fd058655cf4206750236fd5

    • SHA1

      0dbebbcebd10bdb20bf995c6512ace6e0313c3bd

    • SHA256

      88d8fcfc6330c3510cb982c908912c1a1bbd6a54365cd20980bd9f2044a217ce

    • SHA512

      7804ee180f7852a8148cd697b8fb62d85b34920d48c85a8dc29dd5cc80874c5981805b6d8c259a653ecc2563836231f89200317f0cdd5d0b551877b72cd0c12d

    • SSDEEP

      6144:eB1n3Gqplg0VPkv4curGgn/y5ieXr/hb9znMnGbDtOU8uwgN:efGqfg0VMv4/qgnKgeXr/hIG3tOEd

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks