Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

ADNOC RFQ ...84.exe

windows7-x64

10

ADNOC RFQ ...84.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3b9fcf1d3e603811bedbebc05f5929c5

  • Size

    649KB

  • Sample

    220914-nlh88adgep

  • MD5

    3b9fcf1d3e603811bedbebc05f5929c5

  • SHA1

    eab159b6f01f816892a4e5fd403cdf7ad152f3be

  • SHA256

    5c9de379e0244c74cb729cf26ac83fb1ce6d109251d869bea42a32164cf67347

  • SHA512

    46921426e5e442c2b57cf2ef1b3392ff56a67169dbfe30a6bdcc84ca32beeda3482f0f6183daf20dd0c1ef6267cdeeb904ff71e23b4e404fe211a545b4b60d18

  • SSDEEP

    12288:to9lxwRtsMj/SPCKkOeDAcj4EC4BpatVGkEI5h9T:ilx6GMjaPCKleJcJ4mOfAP

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      ADNOC RFQ 97571784.exe

    • Size

      408KB

    • MD5

      c94a8a561f2a2f97b01b8ba7782fb0fd

    • SHA1

      043a57cf2aa245c800ec4e7619e73b6fa92c99aa

    • SHA256

      6105da2e1f737627a8de65308e3f22a7a01f331f1de6cd82f7accc38255ae476

    • SHA512

      4dbc1568265aa51dd5bad97522040cedfb74a8ab33b21eeaf4ae8a6bcb023e09471833d841eea28c5430bada249e67bda713cfff229c7e9332418e2a6541eb17

    • SSDEEP

      6144:G92UDqiu39w/uYmVfw9+EdTFn/o0c0o4CC8shEqkDNvk26iILYDrjiql9kuQTNi:sDhu3Sp/o0cOCTXXtDMYuUQTc

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks