Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

c71ae363dc...75.exe

windows7-x64

10

c71ae363dc...75.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c71ae363dc38caca1d40acd0c5802c75.exe

  • Size

    651KB

  • Sample

    240101-lscnxagahk

  • MD5

    c71ae363dc38caca1d40acd0c5802c75

  • SHA1

    d31673edc216cb167a05a1bf5bc193ae2c8ec179

  • SHA256

    36a7ecf0b280491cfbf8a51b44d40ee56c9722f47067e5c7f05bef55918e779b

  • SHA512

    6210d749fb9812c17a62cbdf76e3e3c1ace29ce08a0ee3eeff80f984479a4149fd61d84051d3b55866ebe8fd5786fe975d96437e96e51490b1f3f1e36cb55cde

  • SSDEEP

    12288:kpyZT1/rCxu/mDwLRI6BxcDqp9aqCcajVuD3Z7BPQGMWYur0s0D:kUx1/jOD3SxcDDcNDqWYurL0

Score
10/10
modiloadertrojanupx

Malware Config

Targets

    • Target

      c71ae363dc38caca1d40acd0c5802c75.exe

    • Size

      651KB

    • MD5

      c71ae363dc38caca1d40acd0c5802c75

    • SHA1

      d31673edc216cb167a05a1bf5bc193ae2c8ec179

    • SHA256

      36a7ecf0b280491cfbf8a51b44d40ee56c9722f47067e5c7f05bef55918e779b

    • SHA512

      6210d749fb9812c17a62cbdf76e3e3c1ace29ce08a0ee3eeff80f984479a4149fd61d84051d3b55866ebe8fd5786fe975d96437e96e51490b1f3f1e36cb55cde

    • SSDEEP

      12288:kpyZT1/rCxu/mDwLRI6BxcDqp9aqCcajVuD3Z7BPQGMWYur0s0D:kUx1/jOD3SxcDDcNDqWYurL0

    Score
    10/10
    modiloadertrojanupx

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks