Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38a379654db67a4adf0325bc4f05c5a849623878de94975270d07461fcf59754

  • Size

    173KB

  • Sample

    220922-akzb6ahcg5

  • MD5

    cbd77b9a9bf457c26775cf816fa210f9

  • SHA1

    42e978cc2b2806aee910152a2fee445fa0ba10c1

  • SHA256

    38a379654db67a4adf0325bc4f05c5a849623878de94975270d07461fcf59754

  • SHA512

    b2991746e30e4fd5740846eb82e1d9d40787ce19154bc6cec340c0c42720e1c361b041dbfa827fc2c223a646b5e37b3461674fc9efa7ed25f301e79a85913262

  • SSDEEP

    3072:vZSBJLAEa5gpuhl+j/ArS3AMqB2/Pk9Dn:hS3LxlG4jYrS3A

Malware Config

Targets

    • Target

      38a379654db67a4adf0325bc4f05c5a849623878de94975270d07461fcf59754

    • Size

      173KB

    • MD5

      cbd77b9a9bf457c26775cf816fa210f9

    • SHA1

      42e978cc2b2806aee910152a2fee445fa0ba10c1

    • SHA256

      38a379654db67a4adf0325bc4f05c5a849623878de94975270d07461fcf59754

    • SHA512

      b2991746e30e4fd5740846eb82e1d9d40787ce19154bc6cec340c0c42720e1c361b041dbfa827fc2c223a646b5e37b3461674fc9efa7ed25f301e79a85913262

    • SSDEEP

      3072:vZSBJLAEa5gpuhl+j/ArS3AMqB2/Pk9Dn:hS3LxlG4jYrS3A

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks