Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f

  • Size

    364KB

  • Sample

    221002-g1qhhschbp

  • MD5

    480e7e6c7be0a1821c4e763b57443980

  • SHA1

    3ff6c922bc738696605689cee0d016a4f51a2189

  • SHA256

    37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f

  • SHA512

    58f88816ac799ab4151ed1c55d6b2012d2c6bc0142acd739b3873e38633fff647d9a4497ae5e24bdc6943fb0832a91c1ae4435aec974eef0cb3557f3ce669b9a

  • SSDEEP

    6144:IX/C2VA/SPtTkRhtTaZueKsddg5qvIFUVy60DfIYVbcT3q6SmDGyCdByONZF2GMi:IPCtApSmizdkONZ5d

Malware Config

Targets

    • Target

      37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f

    • Size

      364KB

    • MD5

      480e7e6c7be0a1821c4e763b57443980

    • SHA1

      3ff6c922bc738696605689cee0d016a4f51a2189

    • SHA256

      37e478cf172754aab975baacdbee95c5499679f8d96d2a2d009d2de24222364f

    • SHA512

      58f88816ac799ab4151ed1c55d6b2012d2c6bc0142acd739b3873e38633fff647d9a4497ae5e24bdc6943fb0832a91c1ae4435aec974eef0cb3557f3ce669b9a

    • SSDEEP

      6144:IX/C2VA/SPtTkRhtTaZueKsddg5qvIFUVy60DfIYVbcT3q6SmDGyCdByONZF2GMi:IPCtApSmizdkONZ5d

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks