Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b731c27418414867d0eb3a5d75a22e06
-
Size
395KB
-
Sample
240306-mhz7wsgh4s
-
MD5
b731c27418414867d0eb3a5d75a22e06
-
SHA1
13b3badeada7bba0f332372523e0469422b4f215
-
SHA256
b5bd429e0a66a4f42d713adca86b44ba18cb910c963f3f9ec436b9e51e708ae3
-
SHA512
578eab0a919a1445a25eeb5c6a8fc511e3b356b6301415277f65abc65646d28adc6e6efff0dca87eba0be472ce834f0cbef4b0a1412e24debdd6ad5a11305af3
-
SSDEEP
12288:m2b8N1fa9nJXl2LWE90c5ALz9oQpkqNJ+Q0iPkOS:mKE1S9X2VOynaJ+QDvS
Static task
static1
Behavioral task
behavioral1
Sample
b731c27418414867d0eb3a5d75a22e06.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
b731c27418414867d0eb3a5d75a22e06.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b731c27418414867d0eb3a5d75a22e06
-
Size
395KB
-
MD5
b731c27418414867d0eb3a5d75a22e06
-
SHA1
13b3badeada7bba0f332372523e0469422b4f215
-
SHA256
b5bd429e0a66a4f42d713adca86b44ba18cb910c963f3f9ec436b9e51e708ae3
-
SHA512
578eab0a919a1445a25eeb5c6a8fc511e3b356b6301415277f65abc65646d28adc6e6efff0dca87eba0be472ce834f0cbef4b0a1412e24debdd6ad5a11305af3
-
SSDEEP
12288:m2b8N1fa9nJXl2LWE90c5ALz9oQpkqNJ+Q0iPkOS:mKE1S9X2VOynaJ+QDvS
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-