Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file.exe

  • Size

    191KB

  • Sample

    221201-3gkntabh96

  • MD5

    ab648190cb6bbc67d78f079003d950d7

  • SHA1

    578eca1b1fe4a67d89fe3af6855d95d4b9abc595

  • SHA256

    186d6991ab941b194ad8a2cd5d25e93a4764ee551e00551c08330ae979fd9aa5

  • SHA512

    13a60ed8fb12927524c57f3f81d4f610bdb669048e1c01a7792e41ab4ef2906bf725d78b57c833172b92f457172650ace5358a2a1a47560ee9b46ba0a2e8e0bb

  • SSDEEP

    3072:BB9CblbKYcT7I5CEzOa4TO2Dcddgtr/zfA7HvRs9E3AZxpR/iOqIoGGA00e:JCZcTKOYgtPfWivpIOyA0D

Malware Config

Targets

    • Target

      file.exe

    • Size

      191KB

    • MD5

      ab648190cb6bbc67d78f079003d950d7

    • SHA1

      578eca1b1fe4a67d89fe3af6855d95d4b9abc595

    • SHA256

      186d6991ab941b194ad8a2cd5d25e93a4764ee551e00551c08330ae979fd9aa5

    • SHA512

      13a60ed8fb12927524c57f3f81d4f610bdb669048e1c01a7792e41ab4ef2906bf725d78b57c833172b92f457172650ace5358a2a1a47560ee9b46ba0a2e8e0bb

    • SSDEEP

      3072:BB9CblbKYcT7I5CEzOa4TO2Dcddgtr/zfA7HvRs9E3AZxpR/iOqIoGGA00e:JCZcTKOYgtPfWivpIOyA0D

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks