Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fsociety00.exe
-
Size
71.2MB
-
Sample
240430-sezpvahe9x
-
MD5
ed7a761877cab1213c270aa0f0c71721
-
SHA1
e7b5273b0f7667f79068aa552cac88970f0fa71a
-
SHA256
3a22e02e6ae66845f18e9834e11ed24fcf0ddee4a4e13741e38d13e94af28a7d
-
SHA512
2ff3dc47c0798b3f89c012d53d801ae23bf6ad3759b2d3552ad9c08ccf150578be485305de1a16298e8d206eb15eaf2bae5e89ab3321fe6a8a7a07655000a38c
-
SSDEEP
1572864:lRWAjgFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIU2qHWB75iVdSGAcW7qthGsA:lU0gt/VG6RmtCRlGPrcU2qHO5iVdSJck
Malware Config
Targets
-
-
Target
fsociety00.exe
-
Size
71.2MB
-
MD5
ed7a761877cab1213c270aa0f0c71721
-
SHA1
e7b5273b0f7667f79068aa552cac88970f0fa71a
-
SHA256
3a22e02e6ae66845f18e9834e11ed24fcf0ddee4a4e13741e38d13e94af28a7d
-
SHA512
2ff3dc47c0798b3f89c012d53d801ae23bf6ad3759b2d3552ad9c08ccf150578be485305de1a16298e8d206eb15eaf2bae5e89ab3321fe6a8a7a07655000a38c
-
SSDEEP
1572864:lRWAjgFP/V4f6Gj53ikjt4jRq2GqFOPV5GiIU2qHWB75iVdSGAcW7qthGsA:lU0gt/VG6RmtCRlGPrcU2qHO5iVdSJck
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
1