Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4eaa595a99e8b87614a97345e16854d2c31efc59b1b186b10ca50b492685d1a9

  • Size

    281KB

  • Sample

    240711-rhp45szbrm

  • MD5

    4a9d8f2b67d2c90900e0a47940f88d5f

  • SHA1

    9dc989d14bb2625d01b14c55563ef0f41f861e92

  • SHA256

    4eaa595a99e8b87614a97345e16854d2c31efc59b1b186b10ca50b492685d1a9

  • SHA512

    c122bb3e3f36172bdb633f6121d9e53f209463ac972620ecb8b6d09b2438e4f2b37effbb0f210ca5bdc9f2ca5752a3af3515fb4c70901934a2466f1f08087b67

  • SSDEEP

    3072:vHrfzYPc6ElLW4l/DReos0gXf+EvC6C36eCWdMuoB+UKrRiEOB9dXCQT1X/MK0dA:jnl/DRfkTC3dM7B+mCGQcAExQ6h1tWm

Malware Config

Targets

    • Target

      4eaa595a99e8b87614a97345e16854d2c31efc59b1b186b10ca50b492685d1a9

    • Size

      281KB

    • MD5

      4a9d8f2b67d2c90900e0a47940f88d5f

    • SHA1

      9dc989d14bb2625d01b14c55563ef0f41f861e92

    • SHA256

      4eaa595a99e8b87614a97345e16854d2c31efc59b1b186b10ca50b492685d1a9

    • SHA512

      c122bb3e3f36172bdb633f6121d9e53f209463ac972620ecb8b6d09b2438e4f2b37effbb0f210ca5bdc9f2ca5752a3af3515fb4c70901934a2466f1f08087b67

    • SSDEEP

      3072:vHrfzYPc6ElLW4l/DReos0gXf+EvC6C36eCWdMuoB+UKrRiEOB9dXCQT1X/MK0dA:jnl/DRfkTC3dM7B+mCGQcAExQ6h1tWm

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks