Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.14e1f18cbb192f7f82b7c575797e5640.exe

  • Size

    2.0MB

  • Sample

    231013-ygg6gaec61

  • MD5

    14e1f18cbb192f7f82b7c575797e5640

  • SHA1

    b61e2e62d03531f5300e984546bfeef705012fb0

  • SHA256

    2812455a52b7ec13f44740faa404baa7c5df1195bb8d888674cb7df510f893e2

  • SHA512

    256c756a3ba28dd3ae7a6ce75c24ba029bcf0c7a15d85f3cbbf9d1d1294696d89f34892224fdbdb4e14c8b2ee67da7c12f6bab48f80d50e564d46f9f55cbebe0

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pXeugxiFdjSr:NABS

Score
10/10

Malware Config

Targets

    • Target

      NEAS.14e1f18cbb192f7f82b7c575797e5640.exe

    • Size

      2.0MB

    • MD5

      14e1f18cbb192f7f82b7c575797e5640

    • SHA1

      b61e2e62d03531f5300e984546bfeef705012fb0

    • SHA256

      2812455a52b7ec13f44740faa404baa7c5df1195bb8d888674cb7df510f893e2

    • SHA512

      256c756a3ba28dd3ae7a6ce75c24ba029bcf0c7a15d85f3cbbf9d1d1294696d89f34892224fdbdb4e14c8b2ee67da7c12f6bab48f80d50e564d46f9f55cbebe0

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pXeugxiFdjSr:NABS

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks