Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    MCPTool-win64.msi

  • Size

    9.6MB

  • Sample

    240612-xhmlxazckk

  • MD5

    17f94677e9d0c4c2a7d65a9a4cddc828

  • SHA1

    e373454ee60ab65fcb6e19492ca2fff25f8c70a1

  • SHA256

    838749951c721807221cd9a15c4119c81a6bcacac4d646c024d31dba2cefca58

  • SHA512

    5bb1e0b83280b2e5b1272c2e971d1af7b5d4f6830cb48c57e9a1c3ba02fcbfbd4edebac4c4f4768c58aa0166228ca57344a034237c9ce98e7dde9d27c00f85f6

  • SSDEEP

    196608:8onPKP4VpjUG99Ue8B1NRaBQHcoklqJNHO5jMv4ToIg0g6:TnPVpjUG9mznNRRcZlqJNHWboQg

Score
6/10

Malware Config

Targets

    • Target

      MCPTool-win64.msi

    • Size

      9.6MB

    • MD5

      17f94677e9d0c4c2a7d65a9a4cddc828

    • SHA1

      e373454ee60ab65fcb6e19492ca2fff25f8c70a1

    • SHA256

      838749951c721807221cd9a15c4119c81a6bcacac4d646c024d31dba2cefca58

    • SHA512

      5bb1e0b83280b2e5b1272c2e971d1af7b5d4f6830cb48c57e9a1c3ba02fcbfbd4edebac4c4f4768c58aa0166228ca57344a034237c9ce98e7dde9d27c00f85f6

    • SSDEEP

      196608:8onPKP4VpjUG99Ue8B1NRaBQHcoklqJNHO5jMv4ToIg0g6:TnPVpjUG9mznNRRcZlqJNHWboQg

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks