Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c443e51bf4e611c69c8dc61af63e5bb9
-
Size
506KB
-
Sample
240312-2dhvdace2z
-
MD5
c443e51bf4e611c69c8dc61af63e5bb9
-
SHA1
ae135b02a8a9ca36493be479994ccc1f458dc7ac
-
SHA256
186077cdf16112f470f0dd4bc892f52879cf472be0107ebc0ccab33ae5cb0e03
-
SHA512
9a20af1712a69a176d80edb4ed6a0cb508dcffae092f690df1c7806dc6464763e22358ddd2f9769130182e5c9a8ac03a04886ff31786e72be12908cd5d33060b
-
SSDEEP
12288:44nC4MC1rb6/bTJ+YFYN439yTsIfD9D1ssBDJzUTVQHVX:44CfIWvV9QNOspCTVy
Static task
static1
Behavioral task
behavioral1
Sample
c443e51bf4e611c69c8dc61af63e5bb9.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
c443e51bf4e611c69c8dc61af63e5bb9.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
c443e51bf4e611c69c8dc61af63e5bb9
-
Size
506KB
-
MD5
c443e51bf4e611c69c8dc61af63e5bb9
-
SHA1
ae135b02a8a9ca36493be479994ccc1f458dc7ac
-
SHA256
186077cdf16112f470f0dd4bc892f52879cf472be0107ebc0ccab33ae5cb0e03
-
SHA512
9a20af1712a69a176d80edb4ed6a0cb508dcffae092f690df1c7806dc6464763e22358ddd2f9769130182e5c9a8ac03a04886ff31786e72be12908cd5d33060b
-
SSDEEP
12288:44nC4MC1rb6/bTJ+YFYN439yTsIfD9D1ssBDJzUTVQHVX:44CfIWvV9QNOspCTVy
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-