Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    07866f4199c183924da8a113b99bd2ec76bdeb8d7e45667914407a77c00ef186

  • Size

    140KB

  • Sample

    221020-pxmlfsdhcn

  • MD5

    48ae60c960246d3ff5311f841ed157e0

  • SHA1

    85e326942508e57bb69babb1078923dab636de25

  • SHA256

    07866f4199c183924da8a113b99bd2ec76bdeb8d7e45667914407a77c00ef186

  • SHA512

    05f81c2e031fc2ac43b66a4e41d10ea07ce81d3e8e0131ef62383a785014e7d29b9a4c44cfbfc676255f7be532d83e127cba8273d2e1db66438a4be58fea125f

  • SSDEEP

    3072:QttZiHMucYPjPtLdKjbLdJ+5jtVbRu6FvyfYcB:KCsucYuLdJ+3VVu6FP

Malware Config

Targets

    • Target

      07866f4199c183924da8a113b99bd2ec76bdeb8d7e45667914407a77c00ef186

    • Size

      140KB

    • MD5

      48ae60c960246d3ff5311f841ed157e0

    • SHA1

      85e326942508e57bb69babb1078923dab636de25

    • SHA256

      07866f4199c183924da8a113b99bd2ec76bdeb8d7e45667914407a77c00ef186

    • SHA512

      05f81c2e031fc2ac43b66a4e41d10ea07ce81d3e8e0131ef62383a785014e7d29b9a4c44cfbfc676255f7be532d83e127cba8273d2e1db66438a4be58fea125f

    • SSDEEP

      3072:QttZiHMucYPjPtLdKjbLdJ+5jtVbRu6FvyfYcB:KCsucYuLdJ+3VVu6FP

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks