Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    CidiaCheats3.com-update.exe

  • Size

    29.1MB

  • Sample

    240305-r1kblshb3v

  • MD5

    ce5f3ff759c15a483d435b6f70a4b0f1

  • SHA1

    f41b26e90c75df32b777b4755628ce9f26e4fb9a

  • SHA256

    8bdbbcc2bf56be5e993a9fc4ed04191857857a5a5ea224903d76e4942fab0f50

  • SHA512

    b56f5cf5f2730ecd54b9c522ebbd7c5dfbe378d94849e439c101f5a23592c9cec715a3e1265b4bfdb17e1de9c7812b17a13ea5452abb6b6fa47ac70498d05fe7

  • SSDEEP

    393216:4h9Sl6eQnIhATeD+C/pW/cR6uX2BVeZW2pRR5uH6+:C9kQI+qD+C/pWXuXueZ4a

Score
7/10

Malware Config

Targets

    • Target

      CidiaCheats3.com-update.exe

    • Size

      29.1MB

    • MD5

      ce5f3ff759c15a483d435b6f70a4b0f1

    • SHA1

      f41b26e90c75df32b777b4755628ce9f26e4fb9a

    • SHA256

      8bdbbcc2bf56be5e993a9fc4ed04191857857a5a5ea224903d76e4942fab0f50

    • SHA512

      b56f5cf5f2730ecd54b9c522ebbd7c5dfbe378d94849e439c101f5a23592c9cec715a3e1265b4bfdb17e1de9c7812b17a13ea5452abb6b6fa47ac70498d05fe7

    • SSDEEP

      393216:4h9Sl6eQnIhATeD+C/pW/cR6uX2BVeZW2pRR5uH6+:C9kQI+qD+C/pWXuXueZ4a

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Target

      CidiaCheats3.com-update.pyc

    • Size

      50KB

    • MD5

      5a0979dc51b2021a7f2515f4e7cfd1bd

    • SHA1

      1c6e8c7ca5c0ee84018ab121ee4d7cfeaffe6e03

    • SHA256

      29a95a15a0400a823cba03720b2ce0e1ad29266de887bb2d23a545fb0a9e4d48

    • SHA512

      e4e741ac6f03ad5b38ac4c95806a83134fdaed035a58903af9b7eafd8e1b96cfd2dc7663694262a4eb0edc5d07032fd1c91ecc56bf6b3dd5417377d11c94afc2

    • SSDEEP

      1536:t9MWYewZIE0GwtvnoeKjGfWPDlhLxlUSgeC:/E0GynJKIyUaC

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks