Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file.exe

  • Size

    288KB

  • Sample

    221231-jdhv9sce81

  • MD5

    bac76068902d69b4272fc1603ef3d90a

  • SHA1

    a08f2e4afa8db340a642f5bf9dc6cb1ca54fdab4

  • SHA256

    bc45a3a498bf49b25198244ae05b0034489431173b83041ee73075406305bee4

  • SHA512

    7be8f03ad73785905edf71379832727ad454ee65991b0990257613cfcc0004991fee99c4302b0c4df8234346081db225aa7d251389d1b0f013967e23da4b5108

  • SSDEEP

    3072:QVS6WP96HLLrXBOobQtRMqNhp8k5wtzh9ITSmdGOgLqI6v+8U9SkEqwi:7zPErL1OobQjNokyv/GU628UIkEq

Malware Config

Targets

    • Target

      file.exe

    • Size

      288KB

    • MD5

      bac76068902d69b4272fc1603ef3d90a

    • SHA1

      a08f2e4afa8db340a642f5bf9dc6cb1ca54fdab4

    • SHA256

      bc45a3a498bf49b25198244ae05b0034489431173b83041ee73075406305bee4

    • SHA512

      7be8f03ad73785905edf71379832727ad454ee65991b0990257613cfcc0004991fee99c4302b0c4df8234346081db225aa7d251389d1b0f013967e23da4b5108

    • SSDEEP

      3072:QVS6WP96HLLrXBOobQtRMqNhp8k5wtzh9ITSmdGOgLqI6v+8U9SkEqwi:7zPErL1OobQjNokyv/GU628UIkEq

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks