Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    21249829dc5d6a0d8f124a2c91334022

  • Size

    542KB

  • Sample

    231231-afjqxabebj

  • MD5

    21249829dc5d6a0d8f124a2c91334022

  • SHA1

    7229a7e018b33407cb2be29ab7faf7d89ad14ff7

  • SHA256

    9eabdd9ae3e3d33f396106303c14889617f30c2a744ddccc414e0646be120b47

  • SHA512

    03073b9a1af00cfb0f04bdcd6e9f6fefe020a2693ad112557a51f44ccc641ca381d475e2b35648d7d8af91f4cac23e7d6b9a1dec613f831aa3febdfdfd6bf45d

  • SSDEEP

    12288:s5m8ZlWk6VT6qIm9qCZb5rTa8kdVXpPzSb+lSse2HJEIJTy:XO+DD9qCZb5rTa8UPPg9sdJtVy

Score
7/10
upx

Malware Config

Targets

    • Target

      21249829dc5d6a0d8f124a2c91334022

    • Size

      542KB

    • MD5

      21249829dc5d6a0d8f124a2c91334022

    • SHA1

      7229a7e018b33407cb2be29ab7faf7d89ad14ff7

    • SHA256

      9eabdd9ae3e3d33f396106303c14889617f30c2a744ddccc414e0646be120b47

    • SHA512

      03073b9a1af00cfb0f04bdcd6e9f6fefe020a2693ad112557a51f44ccc641ca381d475e2b35648d7d8af91f4cac23e7d6b9a1dec613f831aa3febdfdfd6bf45d

    • SSDEEP

      12288:s5m8ZlWk6VT6qIm9qCZb5rTa8kdVXpPzSb+lSse2HJEIJTy:XO+DD9qCZb5rTa8UPPg9sdJtVy

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks