Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

28/12/2022, 00:00

221228-aatzpaca31 8

General

  • Target

    install.bat

  • Size

    4KB

  • Sample

    221228-aatzpaca31

  • MD5

    32ffc32151a2ded23d9a72018460e768

  • SHA1

    80fd5e4fae4407f155e7a56d210c78e33d04e37d

  • SHA256

    1c6261cd2e6ff6ea6b00e925b0f83d609e20d7cf81efbd09042eb59163224fec

  • SHA512

    a39f3fedbb4d64612ab7c82f4885015d2fd930b1f88a8c9052f6b1d89c0ed13dd1618f937b2850dca685147228329f206d708b68f2164cf1d9fa3ca8474a0e04

  • SSDEEP

    96:qGQ9HHSDNcCMOQMYAMlVu7YOnMkycpy1Xq0RHqs06j:qGQ9nRY3YHXuMOMkycpy1XBqs06j

Score
8/10

Malware Config

Targets

    • Target

      install.bat

    • Size

      4KB

    • MD5

      32ffc32151a2ded23d9a72018460e768

    • SHA1

      80fd5e4fae4407f155e7a56d210c78e33d04e37d

    • SHA256

      1c6261cd2e6ff6ea6b00e925b0f83d609e20d7cf81efbd09042eb59163224fec

    • SHA512

      a39f3fedbb4d64612ab7c82f4885015d2fd930b1f88a8c9052f6b1d89c0ed13dd1618f937b2850dca685147228329f206d708b68f2164cf1d9fa3ca8474a0e04

    • SSDEEP

      96:qGQ9HHSDNcCMOQMYAMlVu7YOnMkycpy1Xq0RHqs06j:qGQ9nRY3YHXuMOMkycpy1XBqs06j

    Score
    8/10
    • Blocklisted process makes network request

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks