Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

Pali.zip

windows7-x64

1

Pali.zip

windows10-2004-x64

1

Pali/loader.cfg

windows7-x64

3

Pali/loader.cfg

windows10-2004-x64

3

Pali/loader_prod.exe

windows7-x64

5

Pali/loader_prod.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Pali.zip

  • Size

    23.3MB

  • Sample

    240222-zdz3jseh51

  • MD5

    90965134640dd0530ac7b75eca48de1e

  • SHA1

    98d46731868f5c6579d7c8d1ae5b9e7f374c5829

  • SHA256

    a3aaf7667aafc5516cf664fd21911e38d2169a4566e246dbdcb089f06d39ce5f

  • SHA512

    903d02c31e6b2f819ae6cebc995c2cdcfe19ec3563bd6d84cb18cc43a1c08eef967748e33fc7c74005ea17f6f40e9412a86d78f0faa10534ccc785d0049d7681

  • SSDEEP

    393216:o7UDw+uOMqUOeuakdTRamTCET6anrew1d6QGT80NSyFqWi+4tWxTuLqUHPqKx1iZ:o7UJuOIGuETPnQdArye+4GuLqUyq0a16

Score
5/10

Malware Config

Targets

    • Target

      Pali.zip

    • Size

      23.3MB

    • MD5

      90965134640dd0530ac7b75eca48de1e

    • SHA1

      98d46731868f5c6579d7c8d1ae5b9e7f374c5829

    • SHA256

      a3aaf7667aafc5516cf664fd21911e38d2169a4566e246dbdcb089f06d39ce5f

    • SHA512

      903d02c31e6b2f819ae6cebc995c2cdcfe19ec3563bd6d84cb18cc43a1c08eef967748e33fc7c74005ea17f6f40e9412a86d78f0faa10534ccc785d0049d7681

    • SSDEEP

      393216:o7UDw+uOMqUOeuakdTRamTCET6anrew1d6QGT80NSyFqWi+4tWxTuLqUHPqKx1iZ:o7UJuOIGuETPnQdArye+4GuLqUyq0a16

    Score
    1/10
    behavioral1behavioral2

    • Target

      Pali/loader.cfg

    • Size

      72B

    • MD5

      297db53c6f95a9d416e8c9dda679d7c0

    • SHA1

      9716af20ec38ec58c3908aa0d49d15086cab7226

    • SHA256

      3215db2ca2b65a3ea4c91d917d40f747d851975a26d08977d9c8dbb84c438766

    • SHA512

      5547f787a5d5aebb46fd28e9a6ae1aa3925b42ea18b38701f2532d8c74f1ca2ffd8a73d119a72659e103518e2a86e37ad364c8e5e4952bf1263064d39b39ceca

    Score
    3/10
    behavioral3behavioral4

    • Target

      Pali/loader_prod.exe

    • Size

      25.8MB

    • MD5

      bf8c871604eb4297a39c675b655a9f05

    • SHA1

      f47bb195479b8f0555e21447503feb2be542ee3a

    • SHA256

      3402266e9dea3f417c15c10154ca37761740b41c1c43823b705a177cee32721e

    • SHA512

      d316caa28a270e97674069acb93a80e3d616aa5b3f284ca474234188b60238fa1dd39bc542fe6aa0f5f25d70eecca8c9ed4f3414b0bf8af217dbd7e344d0587e

    • SSDEEP

      393216:njI1es00EYUK2uKa5b/kiJQQTCKJLigXB+605007GedW6+ADmFRL3am8cRr9IrCK:njIR0062OQTjJ+JOTeiASFycRx

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks