Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0cfc61c1ed000e0120ecfc5fc5e62eea

  • Size

    506KB

  • Sample

    231225-hpe33shhg7

  • MD5

    0cfc61c1ed000e0120ecfc5fc5e62eea

  • SHA1

    e70e0e8ad71514e0edc2be6e5a28076c9cc5286e

  • SHA256

    78e3e353c2bec57df7fcb893e759e853a13bc53190bdc560cbbccb371937aec8

  • SHA512

    53613ea1a71ca22fc2f5f4de81b044b29db1c46901fe42f673cf84d10829dc103e451766afdf9942afa96a8f07c86f6a3e2b9ef7e7d02eacbedc25c6865e3446

  • SSDEEP

    12288:sPkz9/h1wzcaVVjzR+afAzAyKE8LRR+j+vpoyC:1L1zS5zCcJEcfe4FC

Score
7/10

Malware Config

Targets

    • Target

      0cfc61c1ed000e0120ecfc5fc5e62eea

    • Size

      506KB

    • MD5

      0cfc61c1ed000e0120ecfc5fc5e62eea

    • SHA1

      e70e0e8ad71514e0edc2be6e5a28076c9cc5286e

    • SHA256

      78e3e353c2bec57df7fcb893e759e853a13bc53190bdc560cbbccb371937aec8

    • SHA512

      53613ea1a71ca22fc2f5f4de81b044b29db1c46901fe42f673cf84d10829dc103e451766afdf9942afa96a8f07c86f6a3e2b9ef7e7d02eacbedc25c6865e3446

    • SSDEEP

      12288:sPkz9/h1wzcaVVjzR+afAzAyKE8LRR+j+vpoyC:1L1zS5zCcJEcfe4FC

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks