Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    loader3.exe

  • Size

    82.1MB

  • Sample

    240409-2lgmaaag9t

  • MD5

    5d6a1f657621a5f21e0b7a9fe95639ae

  • SHA1

    ebe4131861a7813423a36936454e02dbd0d3feb1

  • SHA256

    88228d875478794a3a4ddc0430aeceae62a1359abc384831e04f9cb34e6b910e

  • SHA512

    6d8b9c4ddd67bd394251be5cd48c768d9e4939180fa8ab3cc4cf9b0be32bf38bf5ecf8b97642eea9cee482da54b4456ae1b466836a78152b104f7ccaa83eaf4c

  • SSDEEP

    1572864:l/WHHr9LkE676LGCH6F54q05hhpVWo/AlyKoDdKceLQCfpyT55VrfYE:l/8L9zGCH054qihpVAnxxydrYE

Score
7/10

Malware Config

Targets

    • Target

      loader3.exe

    • Size

      82.1MB

    • MD5

      5d6a1f657621a5f21e0b7a9fe95639ae

    • SHA1

      ebe4131861a7813423a36936454e02dbd0d3feb1

    • SHA256

      88228d875478794a3a4ddc0430aeceae62a1359abc384831e04f9cb34e6b910e

    • SHA512

      6d8b9c4ddd67bd394251be5cd48c768d9e4939180fa8ab3cc4cf9b0be32bf38bf5ecf8b97642eea9cee482da54b4456ae1b466836a78152b104f7ccaa83eaf4c

    • SSDEEP

      1572864:l/WHHr9LkE676LGCH6F54q05hhpVWo/AlyKoDdKceLQCfpyT55VrfYE:l/8L9zGCH054qihpVAnxxydrYE

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks