Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e12e8211fd7aa4ec90c04cd049378394

  • Size

    506KB

  • Sample

    240327-jzpkyaba7v

  • MD5

    e12e8211fd7aa4ec90c04cd049378394

  • SHA1

    055533f5b931266101bdb537b9d77fba0d970f4f

  • SHA256

    e69cc790154a4fc4f19d19531fce11b976352488d95119e02a6ead2566b2144e

  • SHA512

    0dd785d082f09e4957a2f39f708d4b927b5b8d48dc4a8c0a78353432c3b824438f1665108bd8d52816db9e9fcd23ffbcf3fe6af25ae1fa2e0a68615065c1428f

  • SSDEEP

    12288:hCsv136HWZdpfkfdn2mkC7pO+do7/aqptdIJf/kIlR:hCmvdsdps7tHY/D

Score
7/10

Malware Config

Targets

    • Target

      e12e8211fd7aa4ec90c04cd049378394

    • Size

      506KB

    • MD5

      e12e8211fd7aa4ec90c04cd049378394

    • SHA1

      055533f5b931266101bdb537b9d77fba0d970f4f

    • SHA256

      e69cc790154a4fc4f19d19531fce11b976352488d95119e02a6ead2566b2144e

    • SHA512

      0dd785d082f09e4957a2f39f708d4b927b5b8d48dc4a8c0a78353432c3b824438f1665108bd8d52816db9e9fcd23ffbcf3fe6af25ae1fa2e0a68615065c1428f

    • SSDEEP

      12288:hCsv136HWZdpfkfdn2mkC7pO+do7/aqptdIJf/kIlR:hCmvdsdps7tHY/D

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks