Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c

  • Size

    3.6MB

  • Sample

    240206-1jb4caagdq

  • MD5

    05eb4360be1504d67dd58dfd2e57e96d

  • SHA1

    9c148695e0bc6d4294435537ccf022b2bf6266e1

  • SHA256

    6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c

  • SHA512

    75491c1ac3864ffa6868f3dc026fa6ad609be1fa02e632acecb90d61a223db4ce4b3e26c7056188794e2873d44ef4a408fe4f529f8b273b122ed362847035df7

  • SSDEEP

    49152:3EjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWW:3EjlmQbfgSgwvSnN4iVJu10xltKcgqr

Malware Config

Extracted

Family

gozi

Targets

    • Target

      6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c

    • Size

      3.6MB

    • MD5

      05eb4360be1504d67dd58dfd2e57e96d

    • SHA1

      9c148695e0bc6d4294435537ccf022b2bf6266e1

    • SHA256

      6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c

    • SHA512

      75491c1ac3864ffa6868f3dc026fa6ad609be1fa02e632acecb90d61a223db4ce4b3e26c7056188794e2873d44ef4a408fe4f529f8b273b122ed362847035df7

    • SSDEEP

      49152:3EjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWW:3EjlmQbfgSgwvSnN4iVJu10xltKcgqr

    Score
    7/10
    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks