Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    30c0983f9d2e0c185bbfc2d91737db5d6cc409bdfd3ec70c767e1fec5b7b6d79

  • Size

    348KB

  • Sample

    221002-hfjd5sdfdj

  • MD5

    63d9892830af795b8ef5886548597240

  • SHA1

    4ed69df13436b0976ff3a52909e18ff109e66a1f

  • SHA256

    30c0983f9d2e0c185bbfc2d91737db5d6cc409bdfd3ec70c767e1fec5b7b6d79

  • SHA512

    2d9a0270e171fd9040e6c51e7da769de09e28570462a987ed66017a311902a9f80d37f3fbb1d466eb6c89c737b3c1e7e55a9d2afce60dc5339f1465c6ab1185d

  • SSDEEP

    6144:F7OFdDwI4ZMSiHGMbTfH5v05Ap42ZbR0LAhQ+nTLz5BylgYXQUeFUzoE6LVbXV+V:lS4ZHeB/906pNZuLQQ+9BymeKV9bl+ma

Malware Config

Targets

    • Target

      30c0983f9d2e0c185bbfc2d91737db5d6cc409bdfd3ec70c767e1fec5b7b6d79

    • Size

      348KB

    • MD5

      63d9892830af795b8ef5886548597240

    • SHA1

      4ed69df13436b0976ff3a52909e18ff109e66a1f

    • SHA256

      30c0983f9d2e0c185bbfc2d91737db5d6cc409bdfd3ec70c767e1fec5b7b6d79

    • SHA512

      2d9a0270e171fd9040e6c51e7da769de09e28570462a987ed66017a311902a9f80d37f3fbb1d466eb6c89c737b3c1e7e55a9d2afce60dc5339f1465c6ab1185d

    • SSDEEP

      6144:F7OFdDwI4ZMSiHGMbTfH5v05Ap42ZbR0LAhQ+nTLz5BylgYXQUeFUzoE6LVbXV+V:lS4ZHeB/906pNZuLQQ+9BymeKV9bl+ma

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks