Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    backup.exe

  • Size

    27.7MB

  • Sample

    240202-g4x2rshhgp

  • MD5

    a49142418f2f305a43622c38db40a739

  • SHA1

    74f0f4f880d57913986b42fff073e4a343b4ab5e

  • SHA256

    96500feac0ecb51d9b546fbc960351b79ca8841ebbcdecebb25a913b3f0be3f9

  • SHA512

    5f85fed73525b94af63d4088d09d9883a14da903ce6cac4ad0b4e743880a50d878b6a66828cc65d478b04343953c350343302a01707813dcee4d3ddd36061455

  • SSDEEP

    786432:mZUdM3MQzJ3KBzcY87AwyKSuJJW81og1:m2M3MQzJ3K9E7AwykWcog

Score
7/10

Malware Config

Targets

    • Target

      backup.exe

    • Size

      27.7MB

    • MD5

      a49142418f2f305a43622c38db40a739

    • SHA1

      74f0f4f880d57913986b42fff073e4a343b4ab5e

    • SHA256

      96500feac0ecb51d9b546fbc960351b79ca8841ebbcdecebb25a913b3f0be3f9

    • SHA512

      5f85fed73525b94af63d4088d09d9883a14da903ce6cac4ad0b4e743880a50d878b6a66828cc65d478b04343953c350343302a01707813dcee4d3ddd36061455

    • SSDEEP

      786432:mZUdM3MQzJ3KBzcY87AwyKSuJJW81og1:m2M3MQzJ3K9E7AwykWcog

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Target

      main.pyc

    • Size

      7KB

    • MD5

      5a97cc6abe08fd3bcd3a9c9557ef94e0

    • SHA1

      8d619630d9c7a9df05f185b2c616c0c14d786398

    • SHA256

      9ba7d3e3571b101a36d823fd64354ea366e269e07d7556988148ac07beb74656

    • SHA512

      a7793d62c0fcd3c114e96072997d923a0058758804c0ead1a8362f4174d34f2613ad60ab08475237750d6413805f7619482e686d33628cdcbec7ca2b651bcd81

    • SSDEEP

      192:QEcvvTy7Bnm+eMtA9aW9k6cJz2BJSy8YlWw4T3:+9aXpwJSybt4j

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks