Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    LeagueFVM_V2.exe

  • Size

    17.7MB

  • Sample

    231208-eskaesha73

  • MD5

    17cdc8d5ee9f1bb4f3da1139241306c3

  • SHA1

    afcca70481d5eb2fd9cf942920db9d1afb485d0f

  • SHA256

    0a4a9980d4c5cbd5f4489580e663b0d8026ba92c41369dda4e70980c15de645b

  • SHA512

    b6f468271dd35bbb4c44e88ec190104560de67163716925b71978456f6c7d29720c69aede0254903363b2ad4a29bc5eca7870dd1b05c1cd27ea3364f74e44b69

  • SSDEEP

    393216:9qPnLFXlrVgQpDOETgsvfGatgmr2vEKwwBmcL6q:EPLFXN6QoEphjKoir

Malware Config

Targets

    • Target

      LeagueFVM_V2.exe

    • Size

      17.7MB

    • MD5

      17cdc8d5ee9f1bb4f3da1139241306c3

    • SHA1

      afcca70481d5eb2fd9cf942920db9d1afb485d0f

    • SHA256

      0a4a9980d4c5cbd5f4489580e663b0d8026ba92c41369dda4e70980c15de645b

    • SHA512

      b6f468271dd35bbb4c44e88ec190104560de67163716925b71978456f6c7d29720c69aede0254903363b2ad4a29bc5eca7870dd1b05c1cd27ea3364f74e44b69

    • SSDEEP

      393216:9qPnLFXlrVgQpDOETgsvfGatgmr2vEKwwBmcL6q:EPLFXN6QoEphjKoir

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks