Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3e8b395ee93d4215c511ac9f0b830cd306c7b4210e744d191d9891311fc4b34e

  • Size

    266KB

  • Sample

    221007-r2ykmachen

  • MD5

    4d0fac586f247a2c126e8d142be7d85d

  • SHA1

    d7c473380d3b393ab8e225968a9488c0322eb951

  • SHA256

    3e8b395ee93d4215c511ac9f0b830cd306c7b4210e744d191d9891311fc4b34e

  • SHA512

    7ba099761c8d91b804095dc164f4844ec463899c348ef632b839665a569ad5e390956eaa22e6aa77acbad2f5a8b5f6e9e28802e301090c57cf35334459f048f0

  • SSDEEP

    6144:g1CgYRI18GN+5J6xoNjowuzbgwuqAuesxdHTwVfs:g1FeImG66xGunnRxd5

Malware Config

Targets

    • Target

      3e8b395ee93d4215c511ac9f0b830cd306c7b4210e744d191d9891311fc4b34e

    • Size

      266KB

    • MD5

      4d0fac586f247a2c126e8d142be7d85d

    • SHA1

      d7c473380d3b393ab8e225968a9488c0322eb951

    • SHA256

      3e8b395ee93d4215c511ac9f0b830cd306c7b4210e744d191d9891311fc4b34e

    • SHA512

      7ba099761c8d91b804095dc164f4844ec463899c348ef632b839665a569ad5e390956eaa22e6aa77acbad2f5a8b5f6e9e28802e301090c57cf35334459f048f0

    • SSDEEP

      6144:g1CgYRI18GN+5J6xoNjowuzbgwuqAuesxdHTwVfs:g1FeImG66xGunnRxd5

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks