Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    89cd57599c741ce0560bf8b9b4ada660.exe

  • Size

    249KB

  • Sample

    220914-h2m98adccp

  • MD5

    89cd57599c741ce0560bf8b9b4ada660

  • SHA1

    bbc1ad391a6bc2dd574c9f8d3df1889ea913894f

  • SHA256

    ee2ccea3c8e62641cf7c89d640496630a88247e8e27d45ed0d9e246a45e3fe43

  • SHA512

    053d02c439418e1430e5597e04a4e06ca73f9c1a6ec7168ea6462868c8b08e7c3f229af60e0e587e9c316f552d9e2195b17f9854748352b42da787879795fbd0

  • SSDEEP

    6144:xdKnVWNx6NLiVqMplceMKz+0XwWuTDnFRg5zvyR:rgW36NLiVqMpbzzVvWjF

Malware Config

Targets

    • Target

      89cd57599c741ce0560bf8b9b4ada660.exe

    • Size

      249KB

    • MD5

      89cd57599c741ce0560bf8b9b4ada660

    • SHA1

      bbc1ad391a6bc2dd574c9f8d3df1889ea913894f

    • SHA256

      ee2ccea3c8e62641cf7c89d640496630a88247e8e27d45ed0d9e246a45e3fe43

    • SHA512

      053d02c439418e1430e5597e04a4e06ca73f9c1a6ec7168ea6462868c8b08e7c3f229af60e0e587e9c316f552d9e2195b17f9854748352b42da787879795fbd0

    • SSDEEP

      6144:xdKnVWNx6NLiVqMplceMKz+0XwWuTDnFRg5zvyR:rgW36NLiVqMpbzzVvWjF

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks