Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

03/05/2024, 21:21

240503-z7adzsfb8s 7

03/05/2024, 21:13

240503-z227taaa67 7

General

  • Target

    Aventuria.exe

  • Size

    84.0MB

  • Sample

    240503-z7adzsfb8s

  • MD5

    0db1be02ba6e97684961294a56b2737d

  • SHA1

    bc12c7acb89fddad7541fb05089000333c7267b3

  • SHA256

    f45797637ab4d0c62f366a895cafbf5d5cd905dc814de8b8ad71e4f14f660725

  • SHA512

    f0fd6c9821e6d7779d5d92ca25f5c1dccbaa5f973c16cc305d11702bccf84c39db67a2f0bec7514b9f4f553c309ce942c0fcc1dd4bde008303976a3eb6ef85b4

  • SSDEEP

    1572864:54gPXMooecc1FZbOaypJEpF6MRAKSl9S9I698t6EmBp692FVSh6gCD1EnwE7:54Ac5Vc1FZbOopFVRAgDkhhwE7

Score
7/10

Malware Config

Targets

    • Target

      Aventuria.exe

    • Size

      84.0MB

    • MD5

      0db1be02ba6e97684961294a56b2737d

    • SHA1

      bc12c7acb89fddad7541fb05089000333c7267b3

    • SHA256

      f45797637ab4d0c62f366a895cafbf5d5cd905dc814de8b8ad71e4f14f660725

    • SHA512

      f0fd6c9821e6d7779d5d92ca25f5c1dccbaa5f973c16cc305d11702bccf84c39db67a2f0bec7514b9f4f553c309ce942c0fcc1dd4bde008303976a3eb6ef85b4

    • SSDEEP

      1572864:54gPXMooecc1FZbOaypJEpF6MRAKSl9S9I698t6EmBp692FVSh6gCD1EnwE7:54Ac5Vc1FZbOopFVRAgDkhhwE7

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks