Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b3df501713678b476ab601ed6afb83ccbc82ef2c306190e5d358aef52729a7e1

  • Size

    215KB

  • Sample

    221218-e8w9xsde8t

  • MD5

    f32bc2d6731229b8eaf2d0ca1e2d77f6

  • SHA1

    3eb9d9b838ffdaaca34cb3a3bf5f4c9bcb43f8d4

  • SHA256

    b3df501713678b476ab601ed6afb83ccbc82ef2c306190e5d358aef52729a7e1

  • SHA512

    6a4da81957646261e639d8ef583f8e0d8de69cde0c788a5615309fa7655751ab1865a21e83eeac60d9f58083c1de4a6594f3345dd4d334eeff17bd269d0c46bc

  • SSDEEP

    3072:rRoDqisCLl2ZwRRuUkwK2/L5NO8/g3xo0MnPpjMtG3ERWR3LV:2DqrCLl20n/9NTg3C7PpjMsU0VB

Malware Config

Targets

    • Target

      b3df501713678b476ab601ed6afb83ccbc82ef2c306190e5d358aef52729a7e1

    • Size

      215KB

    • MD5

      f32bc2d6731229b8eaf2d0ca1e2d77f6

    • SHA1

      3eb9d9b838ffdaaca34cb3a3bf5f4c9bcb43f8d4

    • SHA256

      b3df501713678b476ab601ed6afb83ccbc82ef2c306190e5d358aef52729a7e1

    • SHA512

      6a4da81957646261e639d8ef583f8e0d8de69cde0c788a5615309fa7655751ab1865a21e83eeac60d9f58083c1de4a6594f3345dd4d334eeff17bd269d0c46bc

    • SSDEEP

      3072:rRoDqisCLl2ZwRRuUkwK2/L5NO8/g3xo0MnPpjMtG3ERWR3LV:2DqrCLl20n/9NTg3C7PpjMsU0VB

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks