Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
vdsc.exe
-
Size
309KB
-
Sample
230420-pzc5ssbh5x
-
MD5
2a3823f5002b14a203fd3f2d6b5b6e53
-
SHA1
b90e9e1e66014944e7b6f0062f943d57a4106a29
-
SHA256
fe382c12a7de4e87f184cf400f190ebd9e7e49d5ae7673bae9df5f76ff23149a
-
SHA512
3e22014fc37d1d1645cee0f924101ba00cfebf40c6d51e1aba456dccc8e81a3ab2414b8fb596f0c5134a282210703075fde96593d9d319ec5adf9370af418e99
-
SSDEEP
6144:I7TbPC4xhavVTLvDVpH8Jbi9WqJFFK3ojNmTHWzW:I7TTlmTXVpH6CWqJTV4THWz
Static task
static1
Behavioral task
behavioral1
Sample
vdsc.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
vdsc.exe
-
Size
309KB
-
MD5
2a3823f5002b14a203fd3f2d6b5b6e53
-
SHA1
b90e9e1e66014944e7b6f0062f943d57a4106a29
-
SHA256
fe382c12a7de4e87f184cf400f190ebd9e7e49d5ae7673bae9df5f76ff23149a
-
SHA512
3e22014fc37d1d1645cee0f924101ba00cfebf40c6d51e1aba456dccc8e81a3ab2414b8fb596f0c5134a282210703075fde96593d9d319ec5adf9370af418e99
-
SSDEEP
6144:I7TbPC4xhavVTLvDVpH8Jbi9WqJFFK3ojNmTHWzW:I7TTlmTXVpH6CWqJTV4THWz
-
XMRig Miner payload
-
Downloads MZ/PE file
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-