Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Orbit.exe

  • Size

    6.1MB

  • Sample

    240811-vh7kzayclk

  • MD5

    fe319e98639caf5b1f885cf3627094c6

  • SHA1

    0b5a5ea5486e0d02edd249cf9e7842f0f59ce07f

  • SHA256

    ccdbdc7e8e807ced8202166730ac4e602fd2a3316f83d805f87dcb233615e918

  • SHA512

    a1eb4e116ff68bde28a09d74ad5c12673cead3e4baaba539e45f214b3dd65ded71cb0524c1d5c42436fbf31b58d425b1e11c0646aa4e1c55bb34076954edb394

  • SSDEEP

    98304:r21N0oAdwJlZTodhdM7nColP5rKkN6FIUzHq6Ay4Nf4VXyR1cU8bty:0m9dwJqI7VN5rzYlzHYy4NgpyR+

Score
6/10

Malware Config

Targets

    • Target

      Orbit.exe

    • Size

      6.1MB

    • MD5

      fe319e98639caf5b1f885cf3627094c6

    • SHA1

      0b5a5ea5486e0d02edd249cf9e7842f0f59ce07f

    • SHA256

      ccdbdc7e8e807ced8202166730ac4e602fd2a3316f83d805f87dcb233615e918

    • SHA512

      a1eb4e116ff68bde28a09d74ad5c12673cead3e4baaba539e45f214b3dd65ded71cb0524c1d5c42436fbf31b58d425b1e11c0646aa4e1c55bb34076954edb394

    • SSDEEP

      98304:r21N0oAdwJlZTodhdM7nColP5rKkN6FIUzHq6Ay4Nf4VXyR1cU8bty:0m9dwJqI7VN5rzYlzHYy4NgpyR+

    Score
    6/10
    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks