Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    756f240949954e3fe066f2a8456408c4f5bad9475f9a0aab389ecd5060ec68f3

  • Size

    301KB

  • Sample

    220910-zztsnaedam

  • MD5

    0a45af6f612fbb94d35727c318aa16b4

  • SHA1

    dbb2444fa22fbdafd3aebbbef23dcec52427e4cc

  • SHA256

    756f240949954e3fe066f2a8456408c4f5bad9475f9a0aab389ecd5060ec68f3

  • SHA512

    4c41f4bb5087e18e6bf330f18e42c3690ea7dad2ab0d0204b018389028fcb51db48ed6d38ee7285381dd0bc7c12da0776836fb19958359c31cb0fc5bf4df9efc

  • SSDEEP

    6144:sJiRKKLc9pf4kbEPYIjBoaEkT/l580syEn2VFSFT:sWuXfRbEPYIoa/5NsyEF1

Malware Config

Targets

    • Target

      756f240949954e3fe066f2a8456408c4f5bad9475f9a0aab389ecd5060ec68f3

    • Size

      301KB

    • MD5

      0a45af6f612fbb94d35727c318aa16b4

    • SHA1

      dbb2444fa22fbdafd3aebbbef23dcec52427e4cc

    • SHA256

      756f240949954e3fe066f2a8456408c4f5bad9475f9a0aab389ecd5060ec68f3

    • SHA512

      4c41f4bb5087e18e6bf330f18e42c3690ea7dad2ab0d0204b018389028fcb51db48ed6d38ee7285381dd0bc7c12da0776836fb19958359c31cb0fc5bf4df9efc

    • SSDEEP

      6144:sJiRKKLc9pf4kbEPYIjBoaEkT/l580syEn2VFSFT:sWuXfRbEPYIoa/5NsyEF1

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks