Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4230eb846b599c38f3e03b2d9c2b37d0N.exe

  • Size

    2.0MB

  • Sample

    240724-dx1mjawajr

  • MD5

    4230eb846b599c38f3e03b2d9c2b37d0

  • SHA1

    3fc9a9f967b272b1304a47d1d5dc4d415794e068

  • SHA256

    aa9a6f259aa76fb97e00e947a2b1dd142f383efdda156af614aac8d4bb9a242f

  • SHA512

    28cadb85845f3530094503f1d38bf2980f5bab33d3580ec6ae4332af30836fd27cc8916c60a593558305f3d7533ae75190e3bf7f957a1fdf02b755870a16a046

  • SSDEEP

    49152:Lz071uv4BPMkHC0IlnASEx/mi1DLIBn+V1X0y:NAB9

Malware Config

Targets

    • Target

      4230eb846b599c38f3e03b2d9c2b37d0N.exe

    • Size

      2.0MB

    • MD5

      4230eb846b599c38f3e03b2d9c2b37d0

    • SHA1

      3fc9a9f967b272b1304a47d1d5dc4d415794e068

    • SHA256

      aa9a6f259aa76fb97e00e947a2b1dd142f383efdda156af614aac8d4bb9a242f

    • SHA512

      28cadb85845f3530094503f1d38bf2980f5bab33d3580ec6ae4332af30836fd27cc8916c60a593558305f3d7533ae75190e3bf7f957a1fdf02b755870a16a046

    • SSDEEP

      49152:Lz071uv4BPMkHC0IlnASEx/mi1DLIBn+V1X0y:NAB9

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Command and Scripting Interpreter: PowerShell

      Powershell Invoke Web Request.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks