Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e4eec57f050aed8ddeed53a8166a6bb14d95e00a9e282e0964fa7fff1aa8e915

  • Size

    328KB

  • Sample

    230111-nf2tdabh64

  • MD5

    5765837c397198581237ec63995efaad

  • SHA1

    7ba124a458b71b71573a2fc123fe79a1405aa197

  • SHA256

    e4eec57f050aed8ddeed53a8166a6bb14d95e00a9e282e0964fa7fff1aa8e915

  • SHA512

    d974e60d58eb29690189fee0e73ae36ffa480a4090e4afec2407b742f274aed7f3b8292db8ea8e4ee8d4bf4dec6a26a2874c18001573a03fd2109eff23e7697f

  • SSDEEP

    6144:aMioEKvVuvcpzliLTqHbjodw0uPraOgbyDqCFRBY6:aMLvYvoz480u9POCTBY

Malware Config

Targets

    • Target

      e4eec57f050aed8ddeed53a8166a6bb14d95e00a9e282e0964fa7fff1aa8e915

    • Size

      328KB

    • MD5

      5765837c397198581237ec63995efaad

    • SHA1

      7ba124a458b71b71573a2fc123fe79a1405aa197

    • SHA256

      e4eec57f050aed8ddeed53a8166a6bb14d95e00a9e282e0964fa7fff1aa8e915

    • SHA512

      d974e60d58eb29690189fee0e73ae36ffa480a4090e4afec2407b742f274aed7f3b8292db8ea8e4ee8d4bf4dec6a26a2874c18001573a03fd2109eff23e7697f

    • SSDEEP

      6144:aMioEKvVuvcpzliLTqHbjodw0uPraOgbyDqCFRBY6:aMLvYvoz480u9POCTBY

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks