Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    73b1ba0355d45ddbaf61331ae75d0cb5407abc0099d1b61d12a69ae8e390f413

  • Size

    361KB

  • Sample

    221106-neqdysbecm

  • MD5

    fcfac837f8bc438090055bf1c8adc675

  • SHA1

    f5df70e8ce133dd393881e4905b9aec4347e1ee6

  • SHA256

    73b1ba0355d45ddbaf61331ae75d0cb5407abc0099d1b61d12a69ae8e390f413

  • SHA512

    85e4bde9605032a0809cb3e4f9109d0e5f46fac51ed92302a9623b254b00c484a77f588e90a74f014f553d426e4b25fca1bd365c28c39557364cc7f6b39737c9

  • SSDEEP

    6144:pkU1ampKEpqs2WSH8EP6BEWCdrYnP9B2ZxrLTVoKYMvRAS5zz+Tv1:p3KEUs2WZKYP2DnTyZMvRLl

Malware Config

Targets

    • Target

      73b1ba0355d45ddbaf61331ae75d0cb5407abc0099d1b61d12a69ae8e390f413

    • Size

      361KB

    • MD5

      fcfac837f8bc438090055bf1c8adc675

    • SHA1

      f5df70e8ce133dd393881e4905b9aec4347e1ee6

    • SHA256

      73b1ba0355d45ddbaf61331ae75d0cb5407abc0099d1b61d12a69ae8e390f413

    • SHA512

      85e4bde9605032a0809cb3e4f9109d0e5f46fac51ed92302a9623b254b00c484a77f588e90a74f014f553d426e4b25fca1bd365c28c39557364cc7f6b39737c9

    • SSDEEP

      6144:pkU1ampKEpqs2WSH8EP6BEWCdrYnP9B2ZxrLTVoKYMvRAS5zz+Tv1:p3KEUs2WZKYP2DnTyZMvRLl

    • ISR Stealer

      ISR Stealer is a modified version of Hackhound Stealer written in visual basic.

    • ISR Stealer payload

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks