Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Nudes-Package.exe

windows10-1703-x64

7

Nudes-Package.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Nudes-Package.exe

  • Size

    70.9MB

  • Sample

    231119-d1hacshf3t

  • MD5

    84a97c69e3a2da29f1699984edc079ad

  • SHA1

    8f218fedd2ba934ac98b5a62560c0d07c884b1a3

  • SHA256

    e40d7dec645901240b4341640c466722c6716bf210269d59aea776e4a0bcbe41

  • SHA512

    4b9f9b7b9da553b417ee481b0a57278d19d6c9c3373c418da29a5fcd558c9b0e200eb54d2fea81656af71fa05ce44a3074820d6e8c87680a77bfb1f4141f6ae3

  • SSDEEP

    1572864:a4/4rzOchP/vIBhHzVBXR9Xmhmr4O/il6/MsLsBSEJ/10MwKztSCPyGq7:pkqcdX+H3Br7i/sLsBd/VwRgq7

Score
7/10

Malware Config

Targets

    • Target

      Nudes-Package.exe

    • Size

      70.9MB

    • MD5

      84a97c69e3a2da29f1699984edc079ad

    • SHA1

      8f218fedd2ba934ac98b5a62560c0d07c884b1a3

    • SHA256

      e40d7dec645901240b4341640c466722c6716bf210269d59aea776e4a0bcbe41

    • SHA512

      4b9f9b7b9da553b417ee481b0a57278d19d6c9c3373c418da29a5fcd558c9b0e200eb54d2fea81656af71fa05ce44a3074820d6e8c87680a77bfb1f4141f6ae3

    • SSDEEP

      1572864:a4/4rzOchP/vIBhHzVBXR9Xmhmr4O/il6/MsLsBSEJ/10MwKztSCPyGq7:pkqcdX+H3Br7i/sLsBd/VwRgq7

    Score
    7/10

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks