Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f182a248427d200b9adcaeffe18bea7ea959d66c24702c4a0bbf8a40eb2d3ce

  • Size

    1.8MB

  • Sample

    240723-xj23zswbja

  • MD5

    aefbcb4da46707859ea9ed001139bcd7

  • SHA1

    31a4b9898cdde46da4d7dfcc0e1a0fa8a2975048

  • SHA256

    0f182a248427d200b9adcaeffe18bea7ea959d66c24702c4a0bbf8a40eb2d3ce

  • SHA512

    c30a89bd6bc34e8748c8243376e59feb3c934ac25d6d289934c45e810d88e6303820699b3307ad1d5b1ba83650a4505ad1e7c8b9e40709eab37edfd25699c62c

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pPg8d7:NABj

Malware Config

Targets

    • Target

      0f182a248427d200b9adcaeffe18bea7ea959d66c24702c4a0bbf8a40eb2d3ce

    • Size

      1.8MB

    • MD5

      aefbcb4da46707859ea9ed001139bcd7

    • SHA1

      31a4b9898cdde46da4d7dfcc0e1a0fa8a2975048

    • SHA256

      0f182a248427d200b9adcaeffe18bea7ea959d66c24702c4a0bbf8a40eb2d3ce

    • SHA512

      c30a89bd6bc34e8748c8243376e59feb3c934ac25d6d289934c45e810d88e6303820699b3307ad1d5b1ba83650a4505ad1e7c8b9e40709eab37edfd25699c62c

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4pPg8d7:NABj

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks