Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    HostsMod.exe

  • Size

    2.6MB

  • Sample

    240801-1dnvysxalj

  • MD5

    76587f6496a36d5987785d76493ae933

  • SHA1

    327599b82691d30bf05867b064574db87fb61022

  • SHA256

    ab414d0ae73f20561c4f7cd81b143979a35176f859f52c5207872ee0ccb1659b

  • SHA512

    ae1026a451a5f97310cd8ecafb616d4254326c9925e4e63a4f640f3a62d99cd9ca26b3a0c9b286cd0d3d0599c2b9e7c31d519a06c742d0b25d3d03995a195f8d

  • SSDEEP

    49152:Qwjft2SYrFDVnp2Ede39cxkrH369i2QUIvJN9eBR3xlUfWLNC5AniWGmvISx:rYrFDCN552/UfWLNC5AnomvISx

Score
8/10

Malware Config

Targets

    • Target

      HostsMod.exe

    • Size

      2.6MB

    • MD5

      76587f6496a36d5987785d76493ae933

    • SHA1

      327599b82691d30bf05867b064574db87fb61022

    • SHA256

      ab414d0ae73f20561c4f7cd81b143979a35176f859f52c5207872ee0ccb1659b

    • SHA512

      ae1026a451a5f97310cd8ecafb616d4254326c9925e4e63a4f640f3a62d99cd9ca26b3a0c9b286cd0d3d0599c2b9e7c31d519a06c742d0b25d3d03995a195f8d

    • SSDEEP

      49152:Qwjft2SYrFDVnp2Ede39cxkrH369i2QUIvJN9eBR3xlUfWLNC5AniWGmvISx:rYrFDCN552/UfWLNC5AnomvISx

    Score
    8/10
    • Drops file in Drivers directory

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks