Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    identifier

  • Size

    542KB

  • Sample

    230607-pqd1qsah9v

  • MD5

    979cf33c3b924573effef2bd18d02488

  • SHA1

    e8ccb404438628f2d0deed127f0915f92c5cc6b6

  • SHA256

    e249d8a23bf2b33990393feec477f6b9ef21d38acbfc7f13d4de2704b729b877

  • SHA512

    ee7529270e80a656d8df312578e4a8ecccfa11e8ca23b30065ee9caec22c8eede51f8de7dc92865e94e169e0590f125e888dee8169383ce021e7d069c7464c38

  • SSDEEP

    6144:wCnq3j6/e8+zq3j6/e8+dq3j6/e8+tq3j6/e8+jq3j6/e8+OjTjAwQISNtN1/p6X:wCpjTjA7dQ

Score
10/10

Malware Config

Targets

    • Target

      identifier

    • Size

      542KB

    • MD5

      979cf33c3b924573effef2bd18d02488

    • SHA1

      e8ccb404438628f2d0deed127f0915f92c5cc6b6

    • SHA256

      e249d8a23bf2b33990393feec477f6b9ef21d38acbfc7f13d4de2704b729b877

    • SHA512

      ee7529270e80a656d8df312578e4a8ecccfa11e8ca23b30065ee9caec22c8eede51f8de7dc92865e94e169e0590f125e888dee8169383ce021e7d069c7464c38

    • SSDEEP

      6144:wCnq3j6/e8+zq3j6/e8+dq3j6/e8+tq3j6/e8+jq3j6/e8+OjTjAwQISNtN1/p6X:wCpjTjA7dQ

    Score
    10/10
    • Detected phishing page

    • Contacts a large (599) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Downloads MZ/PE file

    • Drops Chrome extension

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks