Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    057279d9eb0e300512fbdb0a0f608812c2b2905abe0ca24edd8cc06b53ea6013

  • Size

    1.4MB

  • Sample

    240512-wzcbtsch92

  • MD5

    b7ef92165a33709db864d1048e0665bf

  • SHA1

    b39d2eac130cfe0408ea21cb8e50bb8dddb30a1d

  • SHA256

    057279d9eb0e300512fbdb0a0f608812c2b2905abe0ca24edd8cc06b53ea6013

  • SHA512

    c801471a79dd9507396d3e44426d70bce04f78c388905805772bce104138abe372882fe69e10cbeb30c46f42c88c6d63c7ff01a8d983815c7ef86b23b33cf712

  • SSDEEP

    24576:JanwhSe11QSONCpGJCjETPlia+zzDwD/YCgU+Lqq6a9vu2kjGAiYYqmLR7eyCZzq:knw9oUUEEDlnDwq6xkGA78LR7eyjVB

Score
10/10

Malware Config

Targets

    • Target

      057279d9eb0e300512fbdb0a0f608812c2b2905abe0ca24edd8cc06b53ea6013

    • Size

      1.4MB

    • MD5

      b7ef92165a33709db864d1048e0665bf

    • SHA1

      b39d2eac130cfe0408ea21cb8e50bb8dddb30a1d

    • SHA256

      057279d9eb0e300512fbdb0a0f608812c2b2905abe0ca24edd8cc06b53ea6013

    • SHA512

      c801471a79dd9507396d3e44426d70bce04f78c388905805772bce104138abe372882fe69e10cbeb30c46f42c88c6d63c7ff01a8d983815c7ef86b23b33cf712

    • SSDEEP

      24576:JanwhSe11QSONCpGJCjETPlia+zzDwD/YCgU+Lqq6a9vu2kjGAiYYqmLR7eyCZzq:knw9oUUEEDlnDwq6xkGA78LR7eyjVB

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • UPX dump on OEP (original entry point)

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks