Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a45e8fb3a70b1f59d25c907036e1198eb2c4cc866992b49f611669cdcfdc7d36

  • Size

    158KB

  • Sample

    221029-z1cwjafca4

  • MD5

    b9e587cfc0d65cced661b5a5a14949ca

  • SHA1

    85c1e2348d9cb17f6b370c24cefc34ac98dcfe4b

  • SHA256

    30d6622b5f8d8284ddd2faf231848893561096fb8c851c06f1946dc8a15c40e4

  • SHA512

    323147562d279f6e862feab6b640790358d6fa6a8920d73ea70174622e89e152fd300837729807e47e8f35438d0fbf5027b8f678812c2616119e532bcb339a60

  • SSDEEP

    3072:ymqdP2DTRXGyNXZBA6GK+fWKtFyjvtx9iYZAr1zal+ghVeWDmaoE:yfMRLn7yfzybX9iYkzaUcMWDtoE

Malware Config

Targets

    • Target

      a45e8fb3a70b1f59d25c907036e1198eb2c4cc866992b49f611669cdcfdc7d36

    • Size

      260KB

    • MD5

      8d4d7111e9292c0893cf4f509a7cc40c

    • SHA1

      7ca8db6c43b44cd381871acfbb2f2decb9709bbe

    • SHA256

      a45e8fb3a70b1f59d25c907036e1198eb2c4cc866992b49f611669cdcfdc7d36

    • SHA512

      fa3045373dca13afa1ce8be4c0886b4957cbf48bb0400ceecc79a9d3042ffcc37c03e2c996f607a2f90a97ce9c1eb0c83669841ac412d3011be76218a8f024cf

    • SSDEEP

      3072:7ZqHDCBuamRLSl2wCQq5LRb6ggaiNnQjvtx9iYZAr1zqJxFHTKMWfxtbA5M/h3:gCBZKLC2hbRb0fQbX9iYkzqPFzKBo

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks