Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16e615643e0e87126909c54d23407594

  • Size

    1000KB

  • Sample

    231230-nbtl7shed9

  • MD5

    16e615643e0e87126909c54d23407594

  • SHA1

    1ac7255b514d1fac4b57df781eb9a9c924a87aa9

  • SHA256

    db8b1a9bd5d6611cafd62313e19645b862a03a1c96c38af2e2065d834806984e

  • SHA512

    67e56e349fc79d94993aa268adb0d5c21d4adc0a2cb9c55b624ebf07b7a1095845e0ef6b47a24e31dd21972ea642b81eb97ed018e4873472bb239cf99b57ff91

  • SSDEEP

    24576:EeVhXbCgR4zgCnTMPIQ1owcDa1B+5vMiqt0gj2ed:Bhuy4kPKxwqOL

Score
7/10

Malware Config

Targets

    • Target

      16e615643e0e87126909c54d23407594

    • Size

      1000KB

    • MD5

      16e615643e0e87126909c54d23407594

    • SHA1

      1ac7255b514d1fac4b57df781eb9a9c924a87aa9

    • SHA256

      db8b1a9bd5d6611cafd62313e19645b862a03a1c96c38af2e2065d834806984e

    • SHA512

      67e56e349fc79d94993aa268adb0d5c21d4adc0a2cb9c55b624ebf07b7a1095845e0ef6b47a24e31dd21972ea642b81eb97ed018e4873472bb239cf99b57ff91

    • SSDEEP

      24576:EeVhXbCgR4zgCnTMPIQ1owcDa1B+5vMiqt0gj2ed:Bhuy4kPKxwqOL

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks