Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eaab9f6775fbec120229d909a457058334c79609fd8c92bb99a2b186b34ed5df

  • Size

    948KB

  • Sample

    240204-d9gp7aahhn

  • MD5

    17b10059937dfd719ed14ccf111d0879

  • SHA1

    b71db6b40d8b7749c979fd20a98c45489b5631bd

  • SHA256

    eaab9f6775fbec120229d909a457058334c79609fd8c92bb99a2b186b34ed5df

  • SHA512

    faae0e883550c9bded3bb13660f1a92ea7038ca75a431d90e503db9d5f2d97a5b04e02567739aad01e4457b3ac177e389667a510783d3e3455a548b98853fa80

  • SSDEEP

    24576:qefzd7gtkhb7vogFlQ3BoBgccILHq+bi43B5cYErxIm:qqzd75ggGugcBKmDmrxIm

Score
10/10

Malware Config

Extracted

Family

lumma

C2

http://freckletropsao.pw/api

Targets

    • Target

      eaab9f6775fbec120229d909a457058334c79609fd8c92bb99a2b186b34ed5df

    • Size

      948KB

    • MD5

      17b10059937dfd719ed14ccf111d0879

    • SHA1

      b71db6b40d8b7749c979fd20a98c45489b5631bd

    • SHA256

      eaab9f6775fbec120229d909a457058334c79609fd8c92bb99a2b186b34ed5df

    • SHA512

      faae0e883550c9bded3bb13660f1a92ea7038ca75a431d90e503db9d5f2d97a5b04e02567739aad01e4457b3ac177e389667a510783d3e3455a548b98853fa80

    • SSDEEP

      24576:qefzd7gtkhb7vogFlQ3BoBgccILHq+bi43B5cYErxIm:qqzd75ggGugcBKmDmrxIm

    Score
    10/10
    • Detect Lumma Stealer payload V4

    • Lumma Stealer

      An infostealer written in C++ first seen in August 2022.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks