Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Screenshot (15).png

  • Size

    389KB

  • Sample

    240809-pmfp6azhnj

  • MD5

    bf57e007860ef0cbe36044a71bfe6492

  • SHA1

    437378e5a830d3e02dfed396e8903beb462cd3a3

  • SHA256

    db89a4e4564aa584228bc1bc144434dcaf8bcf6706cf41b04a9e354a23d01810

  • SHA512

    334155cf510608620d84b882b373fe0c69a1feb3e047f7ee002ad3a0dff0d198d6eed5ac6dde4fc1864f3844fd020b97a739a875645d6d034249c4d257a3554d

  • SSDEEP

    12288:+hDFtpeFC3Y8Llvm3vGI2cw42ZSs/SFOWBKRv:+9FCFC3XvIezcpMAU

Malware Config

Targets

    • Target

      Screenshot (15).png

    • Size

      389KB

    • MD5

      bf57e007860ef0cbe36044a71bfe6492

    • SHA1

      437378e5a830d3e02dfed396e8903beb462cd3a3

    • SHA256

      db89a4e4564aa584228bc1bc144434dcaf8bcf6706cf41b04a9e354a23d01810

    • SHA512

      334155cf510608620d84b882b373fe0c69a1feb3e047f7ee002ad3a0dff0d198d6eed5ac6dde4fc1864f3844fd020b97a739a875645d6d034249c4d257a3554d

    • SSDEEP

      12288:+hDFtpeFC3Y8Llvm3vGI2cw42ZSs/SFOWBKRv:+9FCFC3XvIezcpMAU

    • Legitimate hosting services abused for malware hosting/C2

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks