Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    usermode.exe

  • Size

    841KB

  • Sample

    240907-z2p79axhpf

  • MD5

    f8b0de77396a65e55a6e3a3068d81ef7

  • SHA1

    20e3d74dabc53283682362f5caa66427841c009d

  • SHA256

    902c4af63b5c77e23636001eb59eabce31380d2e310e483f03b5f2d40f1bc5b5

  • SHA512

    db8789a2f8702a722f2ffc91618960ef2783c6e18cfe779ddadbdeec77d30d40af1e82ded426414dc19fc63d652c1f98a7de51744e2a11ea845105a736dedff1

  • SSDEEP

    6144:Xt4+19w1q16E2LHDpTP/20QhFOeuGfniPCUnyLc4MpHwKV+yjSbw/Wlk25WBqQU/:Xt4+8zz1z/QhFZfniPTMDOyfu2K

Score
7/10

Malware Config

Targets

    • Target

      usermode.exe

    • Size

      841KB

    • MD5

      f8b0de77396a65e55a6e3a3068d81ef7

    • SHA1

      20e3d74dabc53283682362f5caa66427841c009d

    • SHA256

      902c4af63b5c77e23636001eb59eabce31380d2e310e483f03b5f2d40f1bc5b5

    • SHA512

      db8789a2f8702a722f2ffc91618960ef2783c6e18cfe779ddadbdeec77d30d40af1e82ded426414dc19fc63d652c1f98a7de51744e2a11ea845105a736dedff1

    • SSDEEP

      6144:Xt4+19w1q16E2LHDpTP/20QhFOeuGfniPCUnyLc4MpHwKV+yjSbw/Wlk25WBqQU/:Xt4+8zz1z/QhFZfniPTMDOyfu2K

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks