Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    241d5983fba08287582d2a8b2a56302498aa911f8a980319bac5eddca6e85859

  • Size

    257KB

  • Sample

    230403-qm4mnagf4w

  • MD5

    c8509c1d5a79dbb9fbb1936f80247c7e

  • SHA1

    6dc5a8de2a6eb5578998f9ef42205bc574279f5e

  • SHA256

    241d5983fba08287582d2a8b2a56302498aa911f8a980319bac5eddca6e85859

  • SHA512

    946744501f3b5265eca8191b7313924ed02a52c1895a2f6e94a3ba52cff78937e57def9f7580e174511f92d232f15986b6202a2cd5145eb065888947fa8ada3a

  • SSDEEP

    3072:dykjEgsu9Y9Afi9MByMYB1QytK50CzCELmnrV1hiAioug0JcZfQ8ec81a9YFUA5G:Djcu9I9SYBCss0tRVfUchY1KYFuR

Malware Config

Targets

    • Target

      241d5983fba08287582d2a8b2a56302498aa911f8a980319bac5eddca6e85859

    • Size

      257KB

    • MD5

      c8509c1d5a79dbb9fbb1936f80247c7e

    • SHA1

      6dc5a8de2a6eb5578998f9ef42205bc574279f5e

    • SHA256

      241d5983fba08287582d2a8b2a56302498aa911f8a980319bac5eddca6e85859

    • SHA512

      946744501f3b5265eca8191b7313924ed02a52c1895a2f6e94a3ba52cff78937e57def9f7580e174511f92d232f15986b6202a2cd5145eb065888947fa8ada3a

    • SSDEEP

      3072:dykjEgsu9Y9Afi9MByMYB1QytK50CzCELmnrV1hiAioug0JcZfQ8ec81a9YFUA5G:Djcu9I9SYBCss0tRVfUchY1KYFuR

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Accesses Microsoft Outlook profiles

MITRE ATT&CK Enterprise v6

Tasks