Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
406625bdfef5749f15f9ac11a9ed2eb0N.exe
-
Size
1.6MB
-
Sample
240803-dra5pa1flp
-
MD5
406625bdfef5749f15f9ac11a9ed2eb0
-
SHA1
51badb9d56abcdf584c824bd554bac41a9c1e6f3
-
SHA256
d5f41bd93daddd58fc19985d34b18b3d123ae7935dfd7ab70d9e9a84461c7a57
-
SHA512
6d9812ef8212bf47564f2ee59a01452706ff358499aa636f9a4ddccb8f30b6f64ab5dd3ec2c358a7286bf15b229f2e184088a39704ffe1f0db13464ffb49f2c7
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWY1s38kQu12bPxvyuzaBgJ9pcFtT:Lz071uv4BPMkibTIA5I4TNrpDGKK
Malware Config
Targets
-
-
Target
406625bdfef5749f15f9ac11a9ed2eb0N.exe
-
Size
1.6MB
-
MD5
406625bdfef5749f15f9ac11a9ed2eb0
-
SHA1
51badb9d56abcdf584c824bd554bac41a9c1e6f3
-
SHA256
d5f41bd93daddd58fc19985d34b18b3d123ae7935dfd7ab70d9e9a84461c7a57
-
SHA512
6d9812ef8212bf47564f2ee59a01452706ff358499aa636f9a4ddccb8f30b6f64ab5dd3ec2c358a7286bf15b229f2e184088a39704ffe1f0db13464ffb49f2c7
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWY1s38kQu12bPxvyuzaBgJ9pcFtT:Lz071uv4BPMkibTIA5I4TNrpDGKK
Score10/10-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Command and Scripting Interpreter: PowerShell
Powershell Invoke Web Request.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Legitimate hosting services abused for malware hosting/C2
-