Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.fbd35...30.exe

windows7-x64

10

NEAS.fbd35...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.fbd35ddb6965a0fbad30780ca4b5af30.exe

  • Size

    3.1MB

  • Sample

    231022-v5brtabc6s

  • MD5

    fbd35ddb6965a0fbad30780ca4b5af30

  • SHA1

    81195f4569f4f7e2c17fc346cc2cee23d01cabc1

  • SHA256

    fd88452cd380d78ada9a224be678fb5fcb592fa52f7a27a99f03267d35879f97

  • SHA512

    385c1032b6a0a76559a100355799dfdc8da4690a8174c850992a683029218221bad495e4f8888ecc36b0ec92868d91c39e8a9d52116645299a582e57b8cf1469

  • SSDEEP

    98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWq:SbBeSFkG

Score
10/10
xmrigminerupx

Malware Config

Targets

    • Target

      NEAS.fbd35ddb6965a0fbad30780ca4b5af30.exe

    • Size

      3.1MB

    • MD5

      fbd35ddb6965a0fbad30780ca4b5af30

    • SHA1

      81195f4569f4f7e2c17fc346cc2cee23d01cabc1

    • SHA256

      fd88452cd380d78ada9a224be678fb5fcb592fa52f7a27a99f03267d35879f97

    • SHA512

      385c1032b6a0a76559a100355799dfdc8da4690a8174c850992a683029218221bad495e4f8888ecc36b0ec92868d91c39e8a9d52116645299a582e57b8cf1469

    • SSDEEP

      98304:S1ONtyBeSFkXV1etEKLlWUTOfeiRA2R76zHrWq:SbBeSFkG

    Score
    10/10
    xmrigminerupx

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks