Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    99c8e0020a03e49c208cce601caf599e

  • Size

    506KB

  • Sample

    240213-wng3yafg38

  • MD5

    99c8e0020a03e49c208cce601caf599e

  • SHA1

    a0e6e29fa81510d9598d1a32056eea36ad17e892

  • SHA256

    ce481c89c65c5dad216aaedf8ef38b41f93ff08a6ad56d6b0ed6278b5f2d6649

  • SHA512

    de9c8c17ec90d5d5e1c2c64a62c4985a704a6db7d2bec12931ceeb7e49684f5bbfbda6f171a0518aa36f7652477fc8ba8ac981e1c4b64d8e86a380057e701b2d

  • SSDEEP

    12288:XRjmhXwQ9LN4Gf/Q5oUgWsoZore9RFdw8V6:BiwQ9LyG3kgOZoQw8V6

Score
7/10

Malware Config

Targets

    • Target

      99c8e0020a03e49c208cce601caf599e

    • Size

      506KB

    • MD5

      99c8e0020a03e49c208cce601caf599e

    • SHA1

      a0e6e29fa81510d9598d1a32056eea36ad17e892

    • SHA256

      ce481c89c65c5dad216aaedf8ef38b41f93ff08a6ad56d6b0ed6278b5f2d6649

    • SHA512

      de9c8c17ec90d5d5e1c2c64a62c4985a704a6db7d2bec12931ceeb7e49684f5bbfbda6f171a0518aa36f7652477fc8ba8ac981e1c4b64d8e86a380057e701b2d

    • SSDEEP

      12288:XRjmhXwQ9LN4Gf/Q5oUgWsoZore9RFdw8V6:BiwQ9LyG3kgOZoQw8V6

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks