Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ded639938dfe5a3de25a1238590e8d6d.bin

  • Size

    17.7MB

  • Sample

    231225-ck6scaafgq

  • MD5

    ded639938dfe5a3de25a1238590e8d6d

  • SHA1

    e00f49dbb6900364519d8cb7f5ea615933359d98

  • SHA256

    17602c58d208c780b48e78ce16a87f81fa6e0f088868e5be4c68dd11fdab8187

  • SHA512

    463fb76c2488388ef20e652eef2ad044c8616ae8ccea73a160322d558c3be7db784fcc66757749f51d26c75e5ecffd10cd7dd42347661c48c0bed73401ce9c5b

  • SSDEEP

    393216:IqPnLFXlreQpDOETgsvfGaUgNaAMfvECxNzLW8q:5PLFXNeQoEI2DcnK

Malware Config

Targets

    • Target

      ded639938dfe5a3de25a1238590e8d6d.bin

    • Size

      17.7MB

    • MD5

      ded639938dfe5a3de25a1238590e8d6d

    • SHA1

      e00f49dbb6900364519d8cb7f5ea615933359d98

    • SHA256

      17602c58d208c780b48e78ce16a87f81fa6e0f088868e5be4c68dd11fdab8187

    • SHA512

      463fb76c2488388ef20e652eef2ad044c8616ae8ccea73a160322d558c3be7db784fcc66757749f51d26c75e5ecffd10cd7dd42347661c48c0bed73401ce9c5b

    • SSDEEP

      393216:IqPnLFXlreQpDOETgsvfGaUgNaAMfvECxNzLW8q:5PLFXNeQoEI2DcnK

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks