Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file.exe

  • Size

    320KB

  • Sample

    230112-cwajaaah2s

  • MD5

    a8b0effe59e133287ef8944c22880f17

  • SHA1

    6b53001b379fd856531ecc37dd50c27e90706053

  • SHA256

    554fb01a4506f3b715a49df430bafce15e7eeec34519f50d15322b619c71a488

  • SHA512

    ac347936829546f5515df010da873c8e3d49bba26c842432ff803bb1734eaf22d9f5da1666b05e22ca3e8c777ba1b49e1d6ada4beceb8c12394b62043687225a

  • SSDEEP

    3072:FXOiNDq+/tXvRVW5OlActVqCXD+9adXkiYCjHt3lnspk2+dF8M/WhJsheNEsBKmT:Bp5LVxlAILX/HYCz5lnsGdO6WIZg

Malware Config

Targets

    • Target

      file.exe

    • Size

      320KB

    • MD5

      a8b0effe59e133287ef8944c22880f17

    • SHA1

      6b53001b379fd856531ecc37dd50c27e90706053

    • SHA256

      554fb01a4506f3b715a49df430bafce15e7eeec34519f50d15322b619c71a488

    • SHA512

      ac347936829546f5515df010da873c8e3d49bba26c842432ff803bb1734eaf22d9f5da1666b05e22ca3e8c777ba1b49e1d6ada4beceb8c12394b62043687225a

    • SSDEEP

      3072:FXOiNDq+/tXvRVW5OlActVqCXD+9adXkiYCjHt3lnspk2+dF8M/WhJsheNEsBKmT:Bp5LVxlAILX/HYCz5lnsGdO6WIZg

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks