Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

windows-solo-new.ps1

windows7-x64

8

windows-solo-new.ps1

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    windows-solo-new.ps1

  • Size

    584B

  • Sample

    240715-k5gmys1hne

  • MD5

    cbe9af61ccafaaf719cf5c6dc6f571df

  • SHA1

    3f0ef7274bd7f6bf792b7678484f60d25c2b3c08

  • SHA256

    3b3f7cfef7b01c59b314d8c758f93f327a5bd429984f3b37f9924129ccabaf7e

  • SHA512

    ee9eb58893765e1d6e89bafa196d99fca5980ecf28648fd79452ee1d48503fe343851fd776ddd53dc485e87da47677674caf173b7a5c98b325d51a878d8988c6

Score
10/10
execution

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://raw.githubusercontent.com/MoneroOcean/xmrig_setup/master/xmrig.zip

Targets

    • Target

      windows-solo-new.ps1

    • Size

      584B

    • MD5

      cbe9af61ccafaaf719cf5c6dc6f571df

    • SHA1

      3f0ef7274bd7f6bf792b7678484f60d25c2b3c08

    • SHA256

      3b3f7cfef7b01c59b314d8c758f93f327a5bd429984f3b37f9924129ccabaf7e

    • SHA512

      ee9eb58893765e1d6e89bafa196d99fca5980ecf28648fd79452ee1d48503fe343851fd776ddd53dc485e87da47677674caf173b7a5c98b325d51a878d8988c6

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks