Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    634c0528fb0188f00a639d22f3b5c2d97a799f832d90edf402cb752ce7308331

  • Size

    522KB

  • Sample

    230716-ystcwahd8y

  • MD5

    3b5d0aef51de61ffb2ae53eeaa34766c

  • SHA1

    dda5f974b42d9ee4018f639a14de08a604ebf47e

  • SHA256

    634c0528fb0188f00a639d22f3b5c2d97a799f832d90edf402cb752ce7308331

  • SHA512

    eef0e031d14bb4726053905d30f9a1662d80e1a655e6621f3e30ea5b9aeb25993dce77ceb348c85604a330da4e76a3213cef8b077e93c73d691ec9dd469de414

  • SSDEEP

    6144:jLjyoI3G4Xy/tD+/FSnTe3JaNJQ+30oKCYjLIAiEd4fM7KdD7O2AT:jvm3PysN5yQu8CY3Iwd4V71Q

Score
10/10

Malware Config

Targets

    • Target

      634c0528fb0188f00a639d22f3b5c2d97a799f832d90edf402cb752ce7308331

    • Size

      522KB

    • MD5

      3b5d0aef51de61ffb2ae53eeaa34766c

    • SHA1

      dda5f974b42d9ee4018f639a14de08a604ebf47e

    • SHA256

      634c0528fb0188f00a639d22f3b5c2d97a799f832d90edf402cb752ce7308331

    • SHA512

      eef0e031d14bb4726053905d30f9a1662d80e1a655e6621f3e30ea5b9aeb25993dce77ceb348c85604a330da4e76a3213cef8b077e93c73d691ec9dd469de414

    • SSDEEP

      6144:jLjyoI3G4Xy/tD+/FSnTe3JaNJQ+30oKCYjLIAiEd4fM7KdD7O2AT:jvm3PysN5yQu8CY3Iwd4V71Q

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

MITRE ATT&CK Matrix

Tasks