Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1ea9c0ea0563f7681e6f6519f070f079

  • Size

    171KB

  • Sample

    231230-2jqr6sfec4

  • MD5

    1ea9c0ea0563f7681e6f6519f070f079

  • SHA1

    82a759652adfafd0213d57ef04b41d26a88e6fd8

  • SHA256

    5e41733abb235fc64aefb602fb1273710ce13fbec471f0535688895f3a0462f4

  • SHA512

    18b716087d495a2d658a6a2d56cd3867238ce6b3fd6056ea738c1b9602b4c42874ab2b5d755ffc2514eace57ee94b5a1a61fb1a618d577ec0b1a2bf1d3828e20

  • SSDEEP

    3072:Z7n6GvsLTBwPAeVACQbUUawBpc38YxmS8zm00odMyB5q101cGn7twmDDhJW:ZTHowYgJQbUUo3fxF8zmzox7l1cG5wmH

Score
7/10

Malware Config

Targets

    • Target

      1ea9c0ea0563f7681e6f6519f070f079

    • Size

      171KB

    • MD5

      1ea9c0ea0563f7681e6f6519f070f079

    • SHA1

      82a759652adfafd0213d57ef04b41d26a88e6fd8

    • SHA256

      5e41733abb235fc64aefb602fb1273710ce13fbec471f0535688895f3a0462f4

    • SHA512

      18b716087d495a2d658a6a2d56cd3867238ce6b3fd6056ea738c1b9602b4c42874ab2b5d755ffc2514eace57ee94b5a1a61fb1a618d577ec0b1a2bf1d3828e20

    • SSDEEP

      3072:Z7n6GvsLTBwPAeVACQbUUawBpc38YxmS8zm00odMyB5q101cGn7twmDDhJW:ZTHowYgJQbUUo3fxF8zmzox7l1cG5wmH

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks