Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8be655497ded041cc896788e543e5dad24a5dea518f9d869e376948b004c2e71

  • Size

    103KB

  • Sample

    221127-h893kadc4z

  • MD5

    af492f4985b1486f035a2199086921c3

  • SHA1

    748a4865c24eb3c0e21a5b9e6e32a8f9ac2130f0

  • SHA256

    8be655497ded041cc896788e543e5dad24a5dea518f9d869e376948b004c2e71

  • SHA512

    7cb35416aa9e537438158acba7b2bbd9685466800bcfe99429b90e26d80eae598f89c3d8728118aa08e93cf372b0f8bf0c7e5249b695dee7d41506cfd161088a

  • SSDEEP

    3072:DWw/LXWDZ+DxBNb1SpuxJqQRmxrXbLWGO:DWw/DW5uaQRQfY

Score
8/10

Malware Config

Targets

    • Target

      8be655497ded041cc896788e543e5dad24a5dea518f9d869e376948b004c2e71

    • Size

      103KB

    • MD5

      af492f4985b1486f035a2199086921c3

    • SHA1

      748a4865c24eb3c0e21a5b9e6e32a8f9ac2130f0

    • SHA256

      8be655497ded041cc896788e543e5dad24a5dea518f9d869e376948b004c2e71

    • SHA512

      7cb35416aa9e537438158acba7b2bbd9685466800bcfe99429b90e26d80eae598f89c3d8728118aa08e93cf372b0f8bf0c7e5249b695dee7d41506cfd161088a

    • SSDEEP

      3072:DWw/LXWDZ+DxBNb1SpuxJqQRmxrXbLWGO:DWw/DW5uaQRQfY

    Score
    8/10
    • Executes dropped EXE

    • Modifies Installed Components in the registry

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks