Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4ee210619a17ea358d02f212d8cfbd94bc00343ef11c0cf0a1ec4f5aec40b0b4

  • Size

    2.0MB

  • Sample

    230917-2rwndsdb2t

  • MD5

    114bc97983b9d07047b38fe764a76d45

  • SHA1

    a3a50e225a4cea5d0c7d605be70cc5cdd42b0e3c

  • SHA256

    4ee210619a17ea358d02f212d8cfbd94bc00343ef11c0cf0a1ec4f5aec40b0b4

  • SHA512

    5a373b07158ba5b769fa9714a18f89559d9e746b719218725afbf228863d5b0adfc218fee637fcafb273fc630b89ba2ec8a0603d2da4c5eb7629cda74d57c9f2

  • SSDEEP

    24576:A//kLASoMc42yNuvyjUD3mZ1fkaj7UMe6:AlMc42yRg2Z1fkaZ

Score
7/10

Malware Config

Targets

    • Target

      4ee210619a17ea358d02f212d8cfbd94bc00343ef11c0cf0a1ec4f5aec40b0b4

    • Size

      2.0MB

    • MD5

      114bc97983b9d07047b38fe764a76d45

    • SHA1

      a3a50e225a4cea5d0c7d605be70cc5cdd42b0e3c

    • SHA256

      4ee210619a17ea358d02f212d8cfbd94bc00343ef11c0cf0a1ec4f5aec40b0b4

    • SHA512

      5a373b07158ba5b769fa9714a18f89559d9e746b719218725afbf228863d5b0adfc218fee637fcafb273fc630b89ba2ec8a0603d2da4c5eb7629cda74d57c9f2

    • SSDEEP

      24576:A//kLASoMc42yNuvyjUD3mZ1fkaj7UMe6:AlMc42yRg2Z1fkaZ

    Score
    7/10
    • Uses the VBS compiler for execution

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks