Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    05a16e465c4aa7efcca992a294ba83fc2eac1d33cfa2af1faac0c70915fb1a97

  • Size

    280KB

  • Sample

    220916-cx7v6sacbl

  • MD5

    9d8a4f0d70d2ad12ac594188364925a6

  • SHA1

    75494c299a585f663095885afac47c40a6d723b7

  • SHA256

    05a16e465c4aa7efcca992a294ba83fc2eac1d33cfa2af1faac0c70915fb1a97

  • SHA512

    87d513a6cdc70f0fb0c85f3447f2a56dc0ddfb646b6078ce07aaf3f727f5f4aa939cd60c8c32c14b10e7baa41456d04c5ac59ff781fb33bc2eaca383cf60cdbe

  • SSDEEP

    6144:80ZSGdyYDOTAK7e6EAnTcrZl0M21ulHZZQg:80FdyeOTAK7eycrZl0M24dE

Malware Config

Targets

    • Target

      05a16e465c4aa7efcca992a294ba83fc2eac1d33cfa2af1faac0c70915fb1a97

    • Size

      280KB

    • MD5

      9d8a4f0d70d2ad12ac594188364925a6

    • SHA1

      75494c299a585f663095885afac47c40a6d723b7

    • SHA256

      05a16e465c4aa7efcca992a294ba83fc2eac1d33cfa2af1faac0c70915fb1a97

    • SHA512

      87d513a6cdc70f0fb0c85f3447f2a56dc0ddfb646b6078ce07aaf3f727f5f4aa939cd60c8c32c14b10e7baa41456d04c5ac59ff781fb33bc2eaca383cf60cdbe

    • SSDEEP

      6144:80ZSGdyYDOTAK7e6EAnTcrZl0M21ulHZZQg:80FdyeOTAK7eycrZl0M24dE

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks