Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    170afa23564ebc922d1f60b228fe49a8

  • Size

    385KB

  • Sample

    231230-nhb1qsgcdp

  • MD5

    170afa23564ebc922d1f60b228fe49a8

  • SHA1

    22a7ed8415e25b389495dcb0476ae13cc5850890

  • SHA256

    e8f5d067733aca74cb51f8c865a6a22b984af1ecd951cd8e7a14e1b111a4fe0a

  • SHA512

    2fd1d1b2aa7c20f926f5fb005edd6ad8b9af97c42f220a702390c390df1c7f9a5a30abaf39e8158560412d7be26c84366be7c851a5497d9c2186501ff23909e9

  • SSDEEP

    6144:vhWI/exImme8o62ezLLXVggORLry0Sfbp7b9pIw/YrfCB:M3XvezdggkkbhjI2YrfCB

Score
7/10

Malware Config

Targets

    • Target

      170afa23564ebc922d1f60b228fe49a8

    • Size

      385KB

    • MD5

      170afa23564ebc922d1f60b228fe49a8

    • SHA1

      22a7ed8415e25b389495dcb0476ae13cc5850890

    • SHA256

      e8f5d067733aca74cb51f8c865a6a22b984af1ecd951cd8e7a14e1b111a4fe0a

    • SHA512

      2fd1d1b2aa7c20f926f5fb005edd6ad8b9af97c42f220a702390c390df1c7f9a5a30abaf39e8158560412d7be26c84366be7c851a5497d9c2186501ff23909e9

    • SSDEEP

      6144:vhWI/exImme8o62ezLLXVggORLry0Sfbp7b9pIw/YrfCB:M3XvezdggkkbhjI2YrfCB

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks