Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3b3aeef0fb9a412fa69d2f730e433d88

  • Size

    304KB

  • Sample

    231231-2fwt1shhd9

  • MD5

    3b3aeef0fb9a412fa69d2f730e433d88

  • SHA1

    6a6633b0d0f658f9802263d26a1f6920d8c0f2f9

  • SHA256

    8dd2a56704198ab57a70bc7e8f8d338126af40cfe4a00a7c67dbecda59f648cd

  • SHA512

    655928e21eb9107dfa069142a990ce520fbd0d4510e97d93e885bd9301f772f6da8ea7c81a56ef83430674ccfcfa7836ee0d88446231622a0c4ba286e99fc306

  • SSDEEP

    6144:MQdGOa5xUj69oyYqcadDXnounnwnNOk2cxb:MQDa5xQa7cCMunbvcF

Score
10/10

Malware Config

Targets

    • Target

      3b3aeef0fb9a412fa69d2f730e433d88

    • Size

      304KB

    • MD5

      3b3aeef0fb9a412fa69d2f730e433d88

    • SHA1

      6a6633b0d0f658f9802263d26a1f6920d8c0f2f9

    • SHA256

      8dd2a56704198ab57a70bc7e8f8d338126af40cfe4a00a7c67dbecda59f648cd

    • SHA512

      655928e21eb9107dfa069142a990ce520fbd0d4510e97d93e885bd9301f772f6da8ea7c81a56ef83430674ccfcfa7836ee0d88446231622a0c4ba286e99fc306

    • SSDEEP

      6144:MQdGOa5xUj69oyYqcadDXnounnwnNOk2cxb:MQDa5xQa7cCMunbvcF

    Score
    10/10
    • GCleaner

      GCleaner is a Pay-Per-Install malware loader first discovered in early 2019.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks