Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file

  • Size

    182KB

  • Sample

    230213-2xzl8sgh84

  • MD5

    80f9ccb2188e8fe8d8add22f4a2214d9

  • SHA1

    994922fcf284ccd4f6bce9da29d0b501be590cad

  • SHA256

    d001876dc21a9d8c5d116d1dd29d87c8de4654afb74a2dfbc361a99cd4c855ab

  • SHA512

    e3b902000c80452a22900718c37432f72e3a8d844422f86ebe46702c5a10d5e7d8f7724b97a5223d10371ca279a763b5db35764afca67e86ba4427f2b43f2c09

  • SSDEEP

    3072:DK7w/AyWmDpxYsmntNlUpi+wW6AWuqoC9H1TpHyud5bK1E:DGwYyp1xYssHUEbW6GqoO1Vfd5bV

Malware Config

Targets

    • Target

      file

    • Size

      182KB

    • MD5

      80f9ccb2188e8fe8d8add22f4a2214d9

    • SHA1

      994922fcf284ccd4f6bce9da29d0b501be590cad

    • SHA256

      d001876dc21a9d8c5d116d1dd29d87c8de4654afb74a2dfbc361a99cd4c855ab

    • SHA512

      e3b902000c80452a22900718c37432f72e3a8d844422f86ebe46702c5a10d5e7d8f7724b97a5223d10371ca279a763b5db35764afca67e86ba4427f2b43f2c09

    • SSDEEP

      3072:DK7w/AyWmDpxYsmntNlUpi+wW6AWuqoC9H1TpHyud5bK1E:DGwYyp1xYssHUEbW6GqoO1Vfd5bV

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks