Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8ccfdab9ba2f2427dfaf7b920c54b2e14d2c6d4809838eef83906abf59a2f11b

  • Size

    277KB

  • Sample

    240809-hln7ksxerk

  • MD5

    2b3e118128d1e4892cdab3eb0cf46eaa

  • SHA1

    1df99a516ca4dedb8e36a4c5090b04d41cb9a49c

  • SHA256

    8ccfdab9ba2f2427dfaf7b920c54b2e14d2c6d4809838eef83906abf59a2f11b

  • SHA512

    b3e7342a0945b72b5fd052a84e552164e6046a28d917420b40a474760e999a384399295a36f3bafc05407ee877d0c1093df3e690a26048457f7a18f5bbb6e4a6

  • SSDEEP

    3072:vHrfzYPc6X/YdW4l/DReos0geYWdMuoB+UKrRiEOB9dXCQT1X/MK0dk5xMBQLJy0:AAPl/DRfkeTM7B+mCGBV+UdvrEFp7hKN

Malware Config

Targets

    • Target

      8ccfdab9ba2f2427dfaf7b920c54b2e14d2c6d4809838eef83906abf59a2f11b

    • Size

      277KB

    • MD5

      2b3e118128d1e4892cdab3eb0cf46eaa

    • SHA1

      1df99a516ca4dedb8e36a4c5090b04d41cb9a49c

    • SHA256

      8ccfdab9ba2f2427dfaf7b920c54b2e14d2c6d4809838eef83906abf59a2f11b

    • SHA512

      b3e7342a0945b72b5fd052a84e552164e6046a28d917420b40a474760e999a384399295a36f3bafc05407ee877d0c1093df3e690a26048457f7a18f5bbb6e4a6

    • SSDEEP

      3072:vHrfzYPc6X/YdW4l/DReos0geYWdMuoB+UKrRiEOB9dXCQT1X/MK0dk5xMBQLJy0:AAPl/DRfkeTM7B+mCGBV+UdvrEFp7hKN

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks