Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Transferencia.rar

  • Size

    265KB

  • Sample

    231116-qncwbscb32

  • MD5

    6eeea96c202cc6b3f327c718e75e5e54

  • SHA1

    66961a7df23003392b3176b2019cb898e680f9bf

  • SHA256

    dc2846fc0c652194ae759a1a06119bc5e4f0102dd62b2eaab341464ec89944fe

  • SHA512

    194792fe8e4b0a2875c442e3c898a198190c3eaa3cb0b4ee691bbbb2362be67846bbf367493231a9d101af9755998ff4e45d71789a724eb3ea3f5f3f4d12a10a

  • SSDEEP

    6144:oT4Dth1R6LFzFktPQnmzpE7HBCKRx69ChHjZ9zh9Amq:oTi1btIIpELBCKRx6eHjZ93Am

Score
7/10

Malware Config

Targets

    • Target

      Transferencia.exe

    • Size

      263KB

    • MD5

      eab44b2328f9db484cc042970b19a2be

    • SHA1

      c38c69f8a7597a06a4b12cd06309aa23af0ce496

    • SHA256

      36464f131691f5a812e22d4255377f79a475700185352606586f671b9ab63b66

    • SHA512

      5793c049bbb25131725e33e09f6247fa056c64ef0d2bd5e4d643cb2b809b9767aa95bf9d421db9fe960cbf1e408c410a8c43faabf09fc1cc218c56057173a763

    • SSDEEP

      6144:9T4Dth1R6LFzFktPQnmzpE7HBCKRx69ChHjZ9zh9Amq8:9Ti1btIIpELBCKRx6eHjZ93AmN

    Score
    7/10
    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks