Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d6dab315a078a0472ab18e5fed1aafefbb651eacde5d6db1445472a38c738fd0

  • Size

    3.8MB

  • Sample

    240206-1gefpaggh4

  • MD5

    0e2ecea4254271002e99cfb044d4ee6e

  • SHA1

    f961c84425d9e4f869f1dc9bb09bf379fd4b0b62

  • SHA256

    d6dab315a078a0472ab18e5fed1aafefbb651eacde5d6db1445472a38c738fd0

  • SHA512

    c6f7f632623e21e4530571e35c2f5e693c1b9f217055074d8e5dfde7421475d67d523ff24bbbb25082cda389799da6d78cb67316aa6b3c4eac9b069ed498e005

  • SSDEEP

    98304:jEjlmQbfgSgwvSnN4iVJui0xdRoM5XBHsdqR:jEjgQPXqOvWdqR

Malware Config

Extracted

Family

gozi

Targets

    • Target

      d6dab315a078a0472ab18e5fed1aafefbb651eacde5d6db1445472a38c738fd0

    • Size

      3.8MB

    • MD5

      0e2ecea4254271002e99cfb044d4ee6e

    • SHA1

      f961c84425d9e4f869f1dc9bb09bf379fd4b0b62

    • SHA256

      d6dab315a078a0472ab18e5fed1aafefbb651eacde5d6db1445472a38c738fd0

    • SHA512

      c6f7f632623e21e4530571e35c2f5e693c1b9f217055074d8e5dfde7421475d67d523ff24bbbb25082cda389799da6d78cb67316aa6b3c4eac9b069ed498e005

    • SSDEEP

      98304:jEjlmQbfgSgwvSnN4iVJui0xdRoM5XBHsdqR:jEjgQPXqOvWdqR

    Score
    7/10
    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks