Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

payload.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    payload.exe

  • Size

    113KB

  • Sample

    240326-e95yfsda49

  • MD5

    fe8ec3e67ce5fd574c3e4f2317aa81be

  • SHA1

    8128adf325c80eff2532dcfd2e725f7db13cb720

  • SHA256

    f24090ed6e8c1c8fd39072d623863a60135b2a402bc8630f299639244919d910

  • SHA512

    84bcb7d555957a17e9995507b3686044b8d41385c1b1879a5bab10093df9ec2ee91acd2cf1ca0c4a5df4dddd638da234493f41158e1f87fe156aa090a900ada3

  • SSDEEP

    1536:4OhdoS0GQM+dQbSty+Oq1n//+RGDAaxrRNvR4y7P9rvL:4qdotZM+fDn/CGRNfx

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
exe.dropper

http://serveo.net:3697/CommandCam.exe
exe.dropper

http://serveo.net:3697/uploader.exe

Targets

    • Target

      payload.exe

    • Size

      113KB

    • MD5

      fe8ec3e67ce5fd574c3e4f2317aa81be

    • SHA1

      8128adf325c80eff2532dcfd2e725f7db13cb720

    • SHA256

      f24090ed6e8c1c8fd39072d623863a60135b2a402bc8630f299639244919d910

    • SHA512

      84bcb7d555957a17e9995507b3686044b8d41385c1b1879a5bab10093df9ec2ee91acd2cf1ca0c4a5df4dddd638da234493f41158e1f87fe156aa090a900ada3

    • SSDEEP

      1536:4OhdoS0GQM+dQbSty+Oq1n//+RGDAaxrRNvR4y7P9rvL:4qdotZM+fDn/CGRNfx

    Score
    10/10

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Matrix

Tasks