Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-15_d56308409b751ec4c5897fc401ca502d_hacktools_icedid

  • Size

    5.0MB

  • Sample

    240415-dzzs1sdd87

  • MD5

    d56308409b751ec4c5897fc401ca502d

  • SHA1

    5688ac0622b9534712a95304f929ca1285dbc6ba

  • SHA256

    b678fe5bca1dd3c4a87a745526e88feb45991ecf1e0e9430a0f2d3c919202c7f

  • SHA512

    b92d4069717da405fc6fad49a39efec352cba996466a28880937954548f4b9b9af55a3768b211b79bc0d1b8b83cb925ba1d83ecea5b7b9f0b8a28561baeea355

  • SSDEEP

    98304:nHQHLSfJPzdUooYYqdwkLcHHH/Ni2nrhYqdwkLcHH:WcPl3jAHMCjA

Score
10/10
upx

Malware Config

Targets

    • Target

      2024-04-15_d56308409b751ec4c5897fc401ca502d_hacktools_icedid

    • Size

      5.0MB

    • MD5

      d56308409b751ec4c5897fc401ca502d

    • SHA1

      5688ac0622b9534712a95304f929ca1285dbc6ba

    • SHA256

      b678fe5bca1dd3c4a87a745526e88feb45991ecf1e0e9430a0f2d3c919202c7f

    • SHA512

      b92d4069717da405fc6fad49a39efec352cba996466a28880937954548f4b9b9af55a3768b211b79bc0d1b8b83cb925ba1d83ecea5b7b9f0b8a28561baeea355

    • SSDEEP

      98304:nHQHLSfJPzdUooYYqdwkLcHHH/Ni2nrhYqdwkLcHH:WcPl3jAHMCjA

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks