Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.585cf71e2f69a984d6949dd6cdab5810.exe

  • Size

    960KB

  • Sample

    231103-karjnsed9y

  • MD5

    585cf71e2f69a984d6949dd6cdab5810

  • SHA1

    cc1e0049973a15a2d40adcb39387c3fe6f27d24a

  • SHA256

    80624e23929622d85305d6df25663620667c2cb06431c34a7a632ab2045aa8b9

  • SHA512

    32d791947839ec8691f4abec5a34b2aed62db517eb77d44921b64c83a65a04439cb126de020b746362ac4f68edd4280cf15bd31bafc1df92c679e09378344262

  • SSDEEP

    24576:nFRnXZI26p9YYmtuC9iWPWqTvIpx4AUAkEa/ZSTeF+77LX:lOYYmtuC9FPWqTcYAkEgqeF+bX

Score
7/10

Malware Config

Targets

    • Target

      NEAS.585cf71e2f69a984d6949dd6cdab5810.exe

    • Size

      960KB

    • MD5

      585cf71e2f69a984d6949dd6cdab5810

    • SHA1

      cc1e0049973a15a2d40adcb39387c3fe6f27d24a

    • SHA256

      80624e23929622d85305d6df25663620667c2cb06431c34a7a632ab2045aa8b9

    • SHA512

      32d791947839ec8691f4abec5a34b2aed62db517eb77d44921b64c83a65a04439cb126de020b746362ac4f68edd4280cf15bd31bafc1df92c679e09378344262

    • SSDEEP

      24576:nFRnXZI26p9YYmtuC9iWPWqTvIpx4AUAkEa/ZSTeF+77LX:lOYYmtuC9FPWqTcYAkEgqeF+bX

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks