Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Pedido de snorkel88793001.exe

  • Size

    1.6MB

  • Sample

    231003-sgqjysec78

  • MD5

    65e0f14b01b2508fed95a90721d548d6

  • SHA1

    c2d3b361df71699ffde4074e9576303fcecb30af

  • SHA256

    53adecc01775047c7456f6a02f11ffaa6e9addaf2bbf718c3aef0cbcc2b135aa

  • SHA512

    e86f8f1fb88b07353cfbff9d56f8fe262dfe32b7ce78a4ecc7f6232266055696e206df153f93b7b5a76d56ffc047752588769102f1d10f78b7b66558ee120389

  • SSDEEP

    24576:hqMa57sJaGuq6a9DhvhUDpprRmM0scMUuIy+A+:hpsF5q6a3v+DpprRmM0sDUuIH

Score
6/10

Malware Config

Targets

    • Target

      Pedido de snorkel88793001.exe

    • Size

      1.6MB

    • MD5

      65e0f14b01b2508fed95a90721d548d6

    • SHA1

      c2d3b361df71699ffde4074e9576303fcecb30af

    • SHA256

      53adecc01775047c7456f6a02f11ffaa6e9addaf2bbf718c3aef0cbcc2b135aa

    • SHA512

      e86f8f1fb88b07353cfbff9d56f8fe262dfe32b7ce78a4ecc7f6232266055696e206df153f93b7b5a76d56ffc047752588769102f1d10f78b7b66558ee120389

    • SSDEEP

      24576:hqMa57sJaGuq6a9DhvhUDpprRmM0scMUuIy+A+:hpsF5q6a3v+DpprRmM0sDUuIH

    Score
    6/10
    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks