Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a7c4285218581fc609232793a82c091b1855f120ea4484536140533907fa7a48

  • Size

    1.3MB

  • Sample

    231020-kbss5ahf32

  • MD5

    9c39f93c41464571c61a9e6ad689b91a

  • SHA1

    fb2ee625d3b88af6bf5519281250c09da171d438

  • SHA256

    a7c4285218581fc609232793a82c091b1855f120ea4484536140533907fa7a48

  • SHA512

    8611e1f076240b18b70a417acba548c7e5111cd20a1390a596eb30b49faa29d40e12f51acf03fe5e9602fd635ba2feb946574664a3945e0199e2cc91690ff59f

  • SSDEEP

    24576:yP3oWsSQq42nyvUPZ8lvIEK4GyiqRs1wc1EHSLgQyqa5M8VN2W2OI4:cYNqyM1wGy2f1mQ7aiJOP

Malware Config

Targets

    • Target

      a7c4285218581fc609232793a82c091b1855f120ea4484536140533907fa7a48

    • Size

      1.3MB

    • MD5

      9c39f93c41464571c61a9e6ad689b91a

    • SHA1

      fb2ee625d3b88af6bf5519281250c09da171d438

    • SHA256

      a7c4285218581fc609232793a82c091b1855f120ea4484536140533907fa7a48

    • SHA512

      8611e1f076240b18b70a417acba548c7e5111cd20a1390a596eb30b49faa29d40e12f51acf03fe5e9602fd635ba2feb946574664a3945e0199e2cc91690ff59f

    • SSDEEP

      24576:yP3oWsSQq42nyvUPZ8lvIEK4GyiqRs1wc1EHSLgQyqa5M8VN2W2OI4:cYNqyM1wGy2f1mQ7aiJOP

    • FatalRat

      FatalRat is a modular infostealer family written in C++ first appearing in June 2021.

    • Fatal Rat payload

    • Executes dropped EXE

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks