Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

MKCC-MEC-R...24.exe

windows7-x64

10

MKCC-MEC-R...24.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MKCC-MEC-RFQ-115-2024.exe

  • Size

    1.0MB

  • Sample

    240703-ss2rcswaja

  • MD5

    11ab7d8a50ccafbb4d7b5c9e83e4ff4c

  • SHA1

    1e0d2f0564e8a8dc7237c98e3facc0e1b4b314cf

  • SHA256

    2eb137991ea1e48556d906d1e03bfaed1df13529dd2420031e6fc92b55c076d1

  • SHA512

    2e03c60963526576b3a75a488adb607d148888caa4a9be2177479ab762576082e5af2a7a8fd30e019c782dba36dfddc2b1a31c9f36d95bbbbc27a233a2610995

  • SSDEEP

    24576:PAHnh+eWsN3skA4RV1Hom2KXMmHat0nexrhALk5:yh+ZkldoPK8YateEt

Score
10/10
formbookts59ratspywarestealertrojan

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

ts59

Decoy

hgptgz684w.top

gas39.pro

totalcow.com

76466.club

ssweatstudio.com

nr35.top

hmstr-drop.site

kjsdhklssk13.xyz

lostaino.com

athenamotel.info

9332946.com

ec-delivery-jobs-8j.bond

complaix.com

824go.com

checkout4xgrow.shop

modleavedepts.online

shoedio54.com

topallinoneaccounting.com

texhio.online

cn-brand.com

Targets

    • Target

      MKCC-MEC-RFQ-115-2024.exe

    • Size

      1.0MB

    • MD5

      11ab7d8a50ccafbb4d7b5c9e83e4ff4c

    • SHA1

      1e0d2f0564e8a8dc7237c98e3facc0e1b4b314cf

    • SHA256

      2eb137991ea1e48556d906d1e03bfaed1df13529dd2420031e6fc92b55c076d1

    • SHA512

      2e03c60963526576b3a75a488adb607d148888caa4a9be2177479ab762576082e5af2a7a8fd30e019c782dba36dfddc2b1a31c9f36d95bbbbc27a233a2610995

    • SSDEEP

      24576:PAHnh+eWsN3skA4RV1Hom2KXMmHat0nexrhALk5:yh+ZkldoPK8YateEt

    Score
    10/10
    formbookts59ratspywarestealertrojan

    • Formbook

      Formbook is a data stealing malware which is capable of stealing data.

      trojanspywarestealerformbook

    • Formbook payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks