Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c6185a23c51b8ac77e6c1bdf2cd4a8d39b02af8b8027d4162cf9766d19cf87c8

  • Size

    4.8MB

  • Sample

    231103-eqv9xadg79

  • MD5

    d9ce98a0b0029d26876ac86409bac27e

  • SHA1

    7dc9f3ac41b40b5ed78a42273f3f5f95d2d367c3

  • SHA256

    c6185a23c51b8ac77e6c1bdf2cd4a8d39b02af8b8027d4162cf9766d19cf87c8

  • SHA512

    29c81caa093ddf7344e3a647bc6fb76e341de923699111e190e94df9ae1660737237f541c7474157ababc5f33aca8eadf00b54180c6820e1173a399b9ed54eb7

  • SSDEEP

    98304:T/kRk50qK5N7jdM2gOpqufwX9h+3dcWUWZJziS1hZUZyeYOth3fOCQb9GK1/49s:bokO9jdMxOUUwWdiWmS+JuZGKJ49

Score
10/10

Malware Config

Targets

    • Target

      c6185a23c51b8ac77e6c1bdf2cd4a8d39b02af8b8027d4162cf9766d19cf87c8

    • Size

      4.8MB

    • MD5

      d9ce98a0b0029d26876ac86409bac27e

    • SHA1

      7dc9f3ac41b40b5ed78a42273f3f5f95d2d367c3

    • SHA256

      c6185a23c51b8ac77e6c1bdf2cd4a8d39b02af8b8027d4162cf9766d19cf87c8

    • SHA512

      29c81caa093ddf7344e3a647bc6fb76e341de923699111e190e94df9ae1660737237f541c7474157ababc5f33aca8eadf00b54180c6820e1173a399b9ed54eb7

    • SSDEEP

      98304:T/kRk50qK5N7jdM2gOpqufwX9h+3dcWUWZJziS1hZUZyeYOth3fOCQb9GK1/49s:bokO9jdMxOUUwWdiWmS+JuZGKJ49

    Score
    10/10
    • PrivateLoader

      PrivateLoader.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks