Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    92a1f991cd0aed0ea79fbfcc820a5d110d326b96af8591b393e9c0b10820a52c

  • Size

    158KB

  • Sample

    221123-3hb33ace28

  • MD5

    15d367720258a9e47d9a9aa55ff91a41

  • SHA1

    4a0a77adb3c2aacddc2632ae3bd6631a14ed2786

  • SHA256

    92a1f991cd0aed0ea79fbfcc820a5d110d326b96af8591b393e9c0b10820a52c

  • SHA512

    1bb910f5023e4f79d03be3b817ae9bb6f7f5976e4aba1f79d21f5a75688b895a45d8103a7fa3d39c7024f12707f269991c0737e0964a118b98969b3026787fe3

  • SSDEEP

    1536:vsq+QV4rObAdXWpfKy/Vz97qjh3rmKPNIoT:i44rjktzojZqMNIoT

Malware Config

Targets

    • Target

      92a1f991cd0aed0ea79fbfcc820a5d110d326b96af8591b393e9c0b10820a52c

    • Size

      158KB

    • MD5

      15d367720258a9e47d9a9aa55ff91a41

    • SHA1

      4a0a77adb3c2aacddc2632ae3bd6631a14ed2786

    • SHA256

      92a1f991cd0aed0ea79fbfcc820a5d110d326b96af8591b393e9c0b10820a52c

    • SHA512

      1bb910f5023e4f79d03be3b817ae9bb6f7f5976e4aba1f79d21f5a75688b895a45d8103a7fa3d39c7024f12707f269991c0737e0964a118b98969b3026787fe3

    • SSDEEP

      1536:vsq+QV4rObAdXWpfKy/Vz97qjh3rmKPNIoT:i44rjktzojZqMNIoT

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • Modifies Installed Components in the registry

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks