Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    47881bd003a16814776ddea77833ecfe

  • Size

    1000KB

  • Sample

    240107-ak1j8aahak

  • MD5

    47881bd003a16814776ddea77833ecfe

  • SHA1

    5e56237c5005a5a2bdc41d17ee0e6cf75f4bee1f

  • SHA256

    c97d01aefcc573f6c88e2908c46f16a1cd55e0219a6718b1a02eb0ef99fef0c4

  • SHA512

    5786c8c0bb00cf8e70ff4bc244af78a699f5c84635b8652ae371c3af94c60360b51249a005aa02885f5bd6113bfef0e2b3a7ac751643293be7d373d2d398f183

  • SSDEEP

    24576:BM6gAJtFF8CjPV1ZIbzeuXJJfJkDiU2uAPKAWCzwXs5AbRcEn8TXhXnlZ1RnJsti:6R82FaXexqOL

Score
7/10

Malware Config

Targets

    • Target

      47881bd003a16814776ddea77833ecfe

    • Size

      1000KB

    • MD5

      47881bd003a16814776ddea77833ecfe

    • SHA1

      5e56237c5005a5a2bdc41d17ee0e6cf75f4bee1f

    • SHA256

      c97d01aefcc573f6c88e2908c46f16a1cd55e0219a6718b1a02eb0ef99fef0c4

    • SHA512

      5786c8c0bb00cf8e70ff4bc244af78a699f5c84635b8652ae371c3af94c60360b51249a005aa02885f5bd6113bfef0e2b3a7ac751643293be7d373d2d398f183

    • SSDEEP

      24576:BM6gAJtFF8CjPV1ZIbzeuXJJfJkDiU2uAPKAWCzwXs5AbRcEn8TXhXnlZ1RnJsti:6R82FaXexqOL

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks