Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

11/12/2023, 18:17

231211-wwzyqafeh7 10

11/12/2023, 18:12

231211-wtmwdafeb9 10

General

  • Target

    TigerAdmin2_Source.exe

  • Size

    17.7MB

  • Sample

    231211-wwzyqafeh7

  • MD5

    2db089651005db55035c247f32adefdc

  • SHA1

    58e8d8f650836eec2968959148fb021b1bbad824

  • SHA256

    3f54535788aff6716c02979cd69e181b782cf197a5d539539cc0528e4897acb9

  • SHA512

    c74d3f3801ff8a4c180671ad7e80ee7eca7181d719064593a1301a56e21a179a2c6394fa5c4e31d8b6764c51c8992289321e44440840784ce530df3efde691a6

  • SSDEEP

    393216:AqPnLFXlrVgQpDOETgsvfGapgzN8vE1uBpuLSwq:BPLFXN6QoEFWPopsM

Malware Config

Targets

    • Target

      TigerAdmin2_Source.exe

    • Size

      17.7MB

    • MD5

      2db089651005db55035c247f32adefdc

    • SHA1

      58e8d8f650836eec2968959148fb021b1bbad824

    • SHA256

      3f54535788aff6716c02979cd69e181b782cf197a5d539539cc0528e4897acb9

    • SHA512

      c74d3f3801ff8a4c180671ad7e80ee7eca7181d719064593a1301a56e21a179a2c6394fa5c4e31d8b6764c51c8992289321e44440840784ce530df3efde691a6

    • SSDEEP

      393216:AqPnLFXlrVgQpDOETgsvfGapgzN8vE1uBpuLSwq:BPLFXN6QoEFWPopsM

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks