Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    01a16e5a927bcfa66d0e014fee748a5c

  • Size

    506KB

  • Sample

    231225-djx99agbf4

  • MD5

    01a16e5a927bcfa66d0e014fee748a5c

  • SHA1

    455a8f22f3040757465bb5246ba9253369eeb99e

  • SHA256

    d5121b281c7965d9ba78574cdfda0bd52fb3515220085ebb0deab338e65bf3a3

  • SHA512

    e181f918818de8fc10283575439699ae288ede252fd0544a5fa73b220f95ce32e5088c350ce104bf0e83e1293f25eb20a10e8edebb4f2bd4e49aca1d3754be74

  • SSDEEP

    12288:ViW/r/oynJzjnt4ssYMtQVzjcHRoBfNEHfAT:VicrQYzt4s+tW3cHRo7EoT

Score
7/10

Malware Config

Targets

    • Target

      01a16e5a927bcfa66d0e014fee748a5c

    • Size

      506KB

    • MD5

      01a16e5a927bcfa66d0e014fee748a5c

    • SHA1

      455a8f22f3040757465bb5246ba9253369eeb99e

    • SHA256

      d5121b281c7965d9ba78574cdfda0bd52fb3515220085ebb0deab338e65bf3a3

    • SHA512

      e181f918818de8fc10283575439699ae288ede252fd0544a5fa73b220f95ce32e5088c350ce104bf0e83e1293f25eb20a10e8edebb4f2bd4e49aca1d3754be74

    • SSDEEP

      12288:ViW/r/oynJzjnt4ssYMtQVzjcHRoBfNEHfAT:VicrQYzt4s+tW3cHRo7EoT

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks