Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    receipt.pdf.js

  • Size

    420KB

  • Sample

    240109-sawgmaeba3

  • MD5

    ed4a940aceec4031ec56fa375a11dc60

  • SHA1

    363a4d5dcf4a5da377c8e0a776216aa2dce7548d

  • SHA256

    2036c55eeff25d6200dcbf7d4b91bf4137c9829e6435a451ded924c828ec662e

  • SHA512

    e39fb8d235c097de87b15cabe8df770dcd410e4d155b363074d43e80ead98535d864db6647564c819d5500fc2dd92793bf690e2a088f0feca317561f14d7f073

  • SSDEEP

    96:83/QJGLDYV9vLQQQQHrmkKnQVUEyVe+4wTRwPZ8:oEfQQQQHrmkKnQVUEyVe+4wTRwPZ8

Score
8/10

Malware Config

Targets

    • Target

      receipt.pdf.js

    • Size

      420KB

    • MD5

      ed4a940aceec4031ec56fa375a11dc60

    • SHA1

      363a4d5dcf4a5da377c8e0a776216aa2dce7548d

    • SHA256

      2036c55eeff25d6200dcbf7d4b91bf4137c9829e6435a451ded924c828ec662e

    • SHA512

      e39fb8d235c097de87b15cabe8df770dcd410e4d155b363074d43e80ead98535d864db6647564c819d5500fc2dd92793bf690e2a088f0feca317561f14d7f073

    • SSDEEP

      96:83/QJGLDYV9vLQQQQHrmkKnQVUEyVe+4wTRwPZ8:oEfQQQQHrmkKnQVUEyVe+4wTRwPZ8

    Score
    8/10
    • Modifies Windows Firewall

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks