Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7140ced2ed7a8b9c78747664295c547bb00379a1ef92cb4b389cf74065bd02fe.zip

  • Size

    413KB

  • Sample

    240229-f7jswaff93

  • MD5

    cdbe5940e879412657ff487987a2b5c4

  • SHA1

    91f17898b60087fd93ece48325685f4cdd425b8e

  • SHA256

    7140ced2ed7a8b9c78747664295c547bb00379a1ef92cb4b389cf74065bd02fe

  • SHA512

    4880e3376118ddb08263e25c98665097fb59bd40e66bc1a51d2fb6e494ea6cb3fe29fa96f9e0a94f158dd0119e299ab7cea5cf6d7fadae1f356113b02eee8a9c

  • SSDEEP

    12288:oouOR0Pi74Uv310EjiwF8zmAkpmQk67le5PEXFn:FuOQoRN0wEhyk6Be58XFn

Score
7/10

Malware Config

Targets

    • Target

      payment_advice.pdf.exe

    • Size

      488KB

    • MD5

      b1a75a6271ebfc3b672d0a81554a8cb6

    • SHA1

      e2d8af8ad37f39525d3a9c2b3e76761fa708e58e

    • SHA256

      744e507d743c9e8a041276c397fd996f5b395ffe03b3ae2c2e8abf2e873eeb10

    • SHA512

      5b65a743198c0aa81ee2f3b7168d506ac88ca8c0a88673d2531602ad48fe65481578657333b0dadf0682ef8be56b44d08ab2633a6bb8cb9c55be1d3d18665be6

    • SSDEEP

      12288:hGzEt2rIG4OUv310EviKF8zm/QF5h7OeLp0:hGz54fN0CYT1fp0

    Score
    7/10
    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    • Target

      $PLUGINSDIR/System.dll

    • Size

      12KB

    • MD5

      4add245d4ba34b04f213409bfe504c07

    • SHA1

      ef756d6581d70e87d58cc4982e3f4d18e0ea5b09

    • SHA256

      9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706

    • SHA512

      1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d

    • SSDEEP

      192:VjHcQ0qWTlt7wi5Aj/lM0sEWD/wtYbBjpNQybC7y+XZv0QPi:B/Qlt7wiij/lMRv/9V4bvr

    Score
    3/10
    • Target

      Boudoirerne.App

    • Size

      180KB

    • MD5

      34eb110895c016480b0ab1bb30890616

    • SHA1

      917990a29822e65f3e62abd862579c8f974d3910

    • SHA256

      ef3ac06e40e094f2b857b32ca7e8e9f32d34cbf0e433d226a70130d18499ec8f

    • SHA512

      45f053deb96af7f0a436d66cacaf3c9ba5a4c9465cb5ea4487ecddcb61efd1a4e457518c1f72f857e47f390baafbeb5c797c69d386b0ae4e07f4cb8bba0911c1

    • SSDEEP

      3072:Cnx4YIdfRU7b5RdOW7q0Chmm3uMrqzIu0AoadXF0QJThH:iiYuRkRo0ChmeuMwLhH

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks