Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    869cf93abd01f6981cf2d473582f94dd

  • Size

    506KB

  • Sample

    240201-l4gf8scddp

  • MD5

    869cf93abd01f6981cf2d473582f94dd

  • SHA1

    860bfbf8012f8b76820f0c959ccf7061974243fc

  • SHA256

    d7f56aec9688fe21ff3a7daaf03f36f191da44a1a423116d46784c8acec678d6

  • SHA512

    204535682211eec81d34e1a93690aa6001548b9e115753be10adcefc2592b14987537f6364afb4385c3aaaad773adf3aa965d65e95bed1dfb5171a6af0a6b7ed

  • SSDEEP

    12288:maBXFdf810VjbbqI8vo/RQB/Kbx4lYKdGsO58n8s5rF1:9BrfKs3qnvo/RE/2x4hG7Sn8Qh1

Score
7/10

Malware Config

Targets

    • Target

      869cf93abd01f6981cf2d473582f94dd

    • Size

      506KB

    • MD5

      869cf93abd01f6981cf2d473582f94dd

    • SHA1

      860bfbf8012f8b76820f0c959ccf7061974243fc

    • SHA256

      d7f56aec9688fe21ff3a7daaf03f36f191da44a1a423116d46784c8acec678d6

    • SHA512

      204535682211eec81d34e1a93690aa6001548b9e115753be10adcefc2592b14987537f6364afb4385c3aaaad773adf3aa965d65e95bed1dfb5171a6af0a6b7ed

    • SSDEEP

      12288:maBXFdf810VjbbqI8vo/RQB/Kbx4lYKdGsO58n8s5rF1:9BrfKs3qnvo/RE/2x4hG7Sn8Qh1

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks