Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b7fbec8f5f826adc3265accc6f531ae605ab37e5e9ada1444f8b62a9aba1b02f

  • Size

    899KB

  • Sample

    240530-dsgnvscd9x

  • MD5

    2477cc5ad0b1cf56c1a2ed2c3e4c2a6d

  • SHA1

    b5ce1477cbce5811b0d248bf5e00d585697d06d5

  • SHA256

    b7fbec8f5f826adc3265accc6f531ae605ab37e5e9ada1444f8b62a9aba1b02f

  • SHA512

    f931a5f1da751bf4c233d7836abfd22b123d5e06544305d6ea7d415db95a6241ecedf4773f913d9526ee0a4dc08979d89551d458a91981b1adafe3bb1ea6f54f

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXM:7wqd87VM

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      b7fbec8f5f826adc3265accc6f531ae605ab37e5e9ada1444f8b62a9aba1b02f

    • Size

      899KB

    • MD5

      2477cc5ad0b1cf56c1a2ed2c3e4c2a6d

    • SHA1

      b5ce1477cbce5811b0d248bf5e00d585697d06d5

    • SHA256

      b7fbec8f5f826adc3265accc6f531ae605ab37e5e9ada1444f8b62a9aba1b02f

    • SHA512

      f931a5f1da751bf4c233d7836abfd22b123d5e06544305d6ea7d415db95a6241ecedf4773f913d9526ee0a4dc08979d89551d458a91981b1adafe3bb1ea6f54f

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXM:7wqd87VM

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks