Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c2a66cf46a571b38afe385d3ad9b072752bb81bb61ec2892146376d3afca33dc

  • Size

    425KB

  • Sample

    230412-x4wfyaee24

  • MD5

    3c0cafd404bee43f758f88b49f380014

  • SHA1

    b14e0c7947a85d05cb31181279210cfcfce6507d

  • SHA256

    c2a66cf46a571b38afe385d3ad9b072752bb81bb61ec2892146376d3afca33dc

  • SHA512

    d2d0f9b4e31c4c25f932b419ebe67d1de0cdc09f202e32d9d616ae7eac848e40b11799c4ad4397b02258320caf613e069479c26f49324e8d4fc1a05cbd296ee0

  • SSDEEP

    12288:XZWDBLd+vgO4U5n1MoettY9r/c76E6CVr:XIDcgOX5n1MosKNE76HCV

Malware Config

Targets

    • Target

      c2a66cf46a571b38afe385d3ad9b072752bb81bb61ec2892146376d3afca33dc

    • Size

      425KB

    • MD5

      3c0cafd404bee43f758f88b49f380014

    • SHA1

      b14e0c7947a85d05cb31181279210cfcfce6507d

    • SHA256

      c2a66cf46a571b38afe385d3ad9b072752bb81bb61ec2892146376d3afca33dc

    • SHA512

      d2d0f9b4e31c4c25f932b419ebe67d1de0cdc09f202e32d9d616ae7eac848e40b11799c4ad4397b02258320caf613e069479c26f49324e8d4fc1a05cbd296ee0

    • SSDEEP

      12288:XZWDBLd+vgO4U5n1MoettY9r/c76E6CVr:XIDcgOX5n1MosKNE76HCV

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Accesses Microsoft Outlook profiles

MITRE ATT&CK Enterprise v6

Tasks