Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38f7dcc3b99ec4cf26e75b5efd8737a0.exe

  • Size

    306KB

  • Sample

    220911-jcdj6aehhq

  • MD5

    38f7dcc3b99ec4cf26e75b5efd8737a0

  • SHA1

    e8210ebe90b1a0a15375f77a8dae99a850075d5a

  • SHA256

    25d28828af0777e479fb7f494b154a6b3d31239ba08799dfd072fb6c157c51e3

  • SHA512

    d4cfe07b71eab2031c4c049cabe7873e871a347ab329ba7479a866a377d38ecdae8e1c32ad38c76bc72d009cf6b590d49510d72f74935ae6bf2f7b569e2c38de

  • SSDEEP

    6144:e95lpe83wmO2qbzpdGaz0KrPu0zNkc0Vbs3ac7D1p:eppeLmxqPzGgNrPu0OhVbkl7D

Malware Config

Targets

    • Target

      38f7dcc3b99ec4cf26e75b5efd8737a0.exe

    • Size

      306KB

    • MD5

      38f7dcc3b99ec4cf26e75b5efd8737a0

    • SHA1

      e8210ebe90b1a0a15375f77a8dae99a850075d5a

    • SHA256

      25d28828af0777e479fb7f494b154a6b3d31239ba08799dfd072fb6c157c51e3

    • SHA512

      d4cfe07b71eab2031c4c049cabe7873e871a347ab329ba7479a866a377d38ecdae8e1c32ad38c76bc72d009cf6b590d49510d72f74935ae6bf2f7b569e2c38de

    • SSDEEP

      6144:e95lpe83wmO2qbzpdGaz0KrPu0zNkc0Vbs3ac7D1p:eppeLmxqPzGgNrPu0OhVbkl7D

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks