Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.7b2e76962ac5bb1a7cb2ca906561db40.exe

  • Size

    1.6MB

  • Sample

    231115-kb7x2seh99

  • MD5

    7b2e76962ac5bb1a7cb2ca906561db40

  • SHA1

    6db088076dc137b72f9a81c2db43fc83939df025

  • SHA256

    a7a1ec09ef756060420d2201992bbb5d41fe468a67cb5d5e18a47824ae880361

  • SHA512

    b0cf1df7d518a22b880c12f7f8fc6f1d78bf9c3f11d36463b0e922da26d7ea7f75d37177c67c0602990537277b593a371cac0be13eeb27b3456f4161dc764b65

  • SSDEEP

    24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYKpGncHBN/VPwmncGfPZLPogC:Lz071uv4BPMkibTIA5CJvd3Z8v

Score
10/10

Malware Config

Targets

    • Target

      NEAS.7b2e76962ac5bb1a7cb2ca906561db40.exe

    • Size

      1.6MB

    • MD5

      7b2e76962ac5bb1a7cb2ca906561db40

    • SHA1

      6db088076dc137b72f9a81c2db43fc83939df025

    • SHA256

      a7a1ec09ef756060420d2201992bbb5d41fe468a67cb5d5e18a47824ae880361

    • SHA512

      b0cf1df7d518a22b880c12f7f8fc6f1d78bf9c3f11d36463b0e922da26d7ea7f75d37177c67c0602990537277b593a371cac0be13eeb27b3456f4161dc764b65

    • SSDEEP

      24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYKpGncHBN/VPwmncGfPZLPogC:Lz071uv4BPMkibTIA5CJvd3Z8v

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks