Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7d2efc225957931fa822345ef9dbc5ea98e733104c99aaa6a913135ebfa39fea

  • Size

    50KB

  • Sample

    240624-2tq6pazblr

  • MD5

    f239a3e007530e03e86a93fc7eace702

  • SHA1

    4bedab03d3768da19c19d764536feb05bb2738be

  • SHA256

    7d2efc225957931fa822345ef9dbc5ea98e733104c99aaa6a913135ebfa39fea

  • SHA512

    cc6adb13a932d9670607755649a8a34f1051af95278575844ed309ecfdd3a370f84c164121d07a730d0a9e7e4bd2be49e21ec2f9081c0e6bf6634b377613e799

  • SSDEEP

    1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5IJYH:W5ReWjTrW9rNPgYouJYH

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      7d2efc225957931fa822345ef9dbc5ea98e733104c99aaa6a913135ebfa39fea

    • Size

      50KB

    • MD5

      f239a3e007530e03e86a93fc7eace702

    • SHA1

      4bedab03d3768da19c19d764536feb05bb2738be

    • SHA256

      7d2efc225957931fa822345ef9dbc5ea98e733104c99aaa6a913135ebfa39fea

    • SHA512

      cc6adb13a932d9670607755649a8a34f1051af95278575844ed309ecfdd3a370f84c164121d07a730d0a9e7e4bd2be49e21ec2f9081c0e6bf6634b377613e799

    • SSDEEP

      1536:WD1N4TeeWMWfPbp2WTrW9L3JPPgJ+o5IJYH:W5ReWjTrW9rNPgYouJYH

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks