Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

fe3179fc54...f6.exe

windows7-x64

10

fe3179fc54...f6.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fe3179fc54cb05b678a219a4a8348b80fa871be4f1eecdad99b379497dad14f6

  • Size

    706KB

  • Sample

    221128-xk32nsda2z

  • MD5

    a752d9ce56c50c4d469e92e1706d0695

  • SHA1

    258d5ac60713688eadf2c268cd167bf1879488da

  • SHA256

    fe3179fc54cb05b678a219a4a8348b80fa871be4f1eecdad99b379497dad14f6

  • SHA512

    5761d115cd08411948b1c3387002462b41953f9e1a4b978932b8870aeb7ab311a8088ca8d13741728794f4fd06fe61146fc46545dc9bd23d30e4f79f74c45a46

  • SSDEEP

    12288:TBUg6B4wS5jR0jNvCGdG2cJWkX2BbyC+XXf7zUdlEop:TKBQd0Rvt0P2T+DYdldp

Score
10/10
imminentpersistencespywaretrojan

Malware Config

Targets

    • Target

      fe3179fc54cb05b678a219a4a8348b80fa871be4f1eecdad99b379497dad14f6

    • Size

      706KB

    • MD5

      a752d9ce56c50c4d469e92e1706d0695

    • SHA1

      258d5ac60713688eadf2c268cd167bf1879488da

    • SHA256

      fe3179fc54cb05b678a219a4a8348b80fa871be4f1eecdad99b379497dad14f6

    • SHA512

      5761d115cd08411948b1c3387002462b41953f9e1a4b978932b8870aeb7ab311a8088ca8d13741728794f4fd06fe61146fc46545dc9bd23d30e4f79f74c45a46

    • SSDEEP

      12288:TBUg6B4wS5jR0jNvCGdG2cJWkX2BbyC+XXf7zUdlEop:TKBQd0Rvt0P2T+DYdldp

    Score
    10/10
    imminentpersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks