Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    70855a2ce47a41d098654191f371425f5cbe5ef427808672c8e9adbde9b921d8

  • Size

    6.8MB

  • Sample

    240128-2adq9achfj

  • MD5

    6c764b44fa70a6278585d73aa9628e92

  • SHA1

    164cb720560831360e3387b49ce30661af5e00db

  • SHA256

    70855a2ce47a41d098654191f371425f5cbe5ef427808672c8e9adbde9b921d8

  • SHA512

    a9ce70f566a020759e1bc37f9bf704f88443fbb0b6a552e62ca4db0fee1c80caebec98bdaf037cd8eed89fe70646040335bb6ad36d38dacbdbe62c0f4a00fead

  • SSDEEP

    98304:Ml0eMUmbMp/oC4lzgpl6caZK+YsYA5RexxbQh+ySzrA:MWe9tzYzgpl6X7/YA8ZA+DY

Score
10/10

Malware Config

Extracted

Family

gozi

Targets

    • Target

      70855a2ce47a41d098654191f371425f5cbe5ef427808672c8e9adbde9b921d8

    • Size

      6.8MB

    • MD5

      6c764b44fa70a6278585d73aa9628e92

    • SHA1

      164cb720560831360e3387b49ce30661af5e00db

    • SHA256

      70855a2ce47a41d098654191f371425f5cbe5ef427808672c8e9adbde9b921d8

    • SHA512

      a9ce70f566a020759e1bc37f9bf704f88443fbb0b6a552e62ca4db0fee1c80caebec98bdaf037cd8eed89fe70646040335bb6ad36d38dacbdbe62c0f4a00fead

    • SSDEEP

      98304:Ml0eMUmbMp/oC4lzgpl6caZK+YsYA5RexxbQh+ySzrA:MWe9tzYzgpl6X7/YA8ZA+DY

    Score
    10/10
    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks