Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bce8b8c32c6db8d713baadc45da33fbc

  • Size

    506KB

  • Sample

    240309-1v317sbh29

  • MD5

    bce8b8c32c6db8d713baadc45da33fbc

  • SHA1

    c3218b6ff3c75332553f0c498d371b0d15f2e05d

  • SHA256

    866e3b488cc348dda132c3c41848d24354c97d8cbafabe6405ae2e8547b6b65d

  • SHA512

    4a1f0476b546b83ae7fac887caf7bc985c676069f04965c26461272f5d4f72b26d0631ff4ba1205e603220058288cb12ff3d1e48a28e6f5b8b6953843ef48dcb

  • SSDEEP

    12288:8TPVaUL/oAWbR/njNDZD98dkNoGhaXUqVwfU/CRlndQY/:aP/VWb9ZkdaoFifqCTdl/

Score
7/10

Malware Config

Targets

    • Target

      bce8b8c32c6db8d713baadc45da33fbc

    • Size

      506KB

    • MD5

      bce8b8c32c6db8d713baadc45da33fbc

    • SHA1

      c3218b6ff3c75332553f0c498d371b0d15f2e05d

    • SHA256

      866e3b488cc348dda132c3c41848d24354c97d8cbafabe6405ae2e8547b6b65d

    • SHA512

      4a1f0476b546b83ae7fac887caf7bc985c676069f04965c26461272f5d4f72b26d0631ff4ba1205e603220058288cb12ff3d1e48a28e6f5b8b6953843ef48dcb

    • SSDEEP

      12288:8TPVaUL/oAWbR/njNDZD98dkNoGhaXUqVwfU/CRlndQY/:aP/VWb9ZkdaoFifqCTdl/

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks