Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    07681883912f0d0262ccbb6228e7ec0e7972463bc55c5541dc032d56887e0476

  • Size

    4.2MB

  • Sample

    231012-qyvh5aed82

  • MD5

    ca1643da0ad2ea9235a3f52d290447ad

  • SHA1

    f8479db75a0f5f7d48b4dcc29f7324236e838055

  • SHA256

    07681883912f0d0262ccbb6228e7ec0e7972463bc55c5541dc032d56887e0476

  • SHA512

    8f056dffa387c09433ba39e7a774e4a041977c79f0a50947658683d4996713c3d37f867df0335be36c5fd7822642f59779ce73d7740049eb1834608c03222b68

  • SSDEEP

    98304:pXHZjZRIQT34ichDFfTBHND4MT20Xa5qaK0T+mPLAOU:N5jZRImoichDFFRU1+ALk

Malware Config

Targets

    • Target

      07681883912f0d0262ccbb6228e7ec0e7972463bc55c5541dc032d56887e0476

    • Size

      4.2MB

    • MD5

      ca1643da0ad2ea9235a3f52d290447ad

    • SHA1

      f8479db75a0f5f7d48b4dcc29f7324236e838055

    • SHA256

      07681883912f0d0262ccbb6228e7ec0e7972463bc55c5541dc032d56887e0476

    • SHA512

      8f056dffa387c09433ba39e7a774e4a041977c79f0a50947658683d4996713c3d37f867df0335be36c5fd7822642f59779ce73d7740049eb1834608c03222b68

    • SSDEEP

      98304:pXHZjZRIQT34ichDFfTBHND4MT20Xa5qaK0T+mPLAOU:N5jZRImoichDFFRU1+ALk

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

    • Glupteba payload

    • Modifies Windows Firewall

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks