Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a38b5f58e66770b8e4f0fe394584890f

  • Size

    109KB

  • Sample

    240225-mf1ewahe53

  • MD5

    a38b5f58e66770b8e4f0fe394584890f

  • SHA1

    934bd3706b78f98ec6e666d32ead74da12e77a4a

  • SHA256

    c3e1eb83a02677a2085d64b6449be29d6ee375aa012a3a7641a29675eabd92d3

  • SHA512

    c27f438e118faa2a7a828414c4d79fae097b585f442599a9fdee860abda0e79803679bc930a0f3bffc6f962e09d3a2704edba9dd4a41976a3de345f15f590dd8

  • SSDEEP

    3072:dMY2L2FmgTOIzzuLD/v4pFKAoF4wRDEbFUHId:dMdumgTBz2v4mxyCDEpUod

Malware Config

Targets

    • Target

      a38b5f58e66770b8e4f0fe394584890f

    • Size

      109KB

    • MD5

      a38b5f58e66770b8e4f0fe394584890f

    • SHA1

      934bd3706b78f98ec6e666d32ead74da12e77a4a

    • SHA256

      c3e1eb83a02677a2085d64b6449be29d6ee375aa012a3a7641a29675eabd92d3

    • SHA512

      c27f438e118faa2a7a828414c4d79fae097b585f442599a9fdee860abda0e79803679bc930a0f3bffc6f962e09d3a2704edba9dd4a41976a3de345f15f590dd8

    • SSDEEP

      3072:dMY2L2FmgTOIzzuLD/v4pFKAoF4wRDEbFUHId:dMdumgTBz2v4mxyCDEpUod

    • Detect XtremeRAT payload

    • XtremeRAT

      The XtremeRAT was developed by xtremecoder and has been available since at least 2010, and written in Delphi.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks