Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cracked check.zip

  • Size

    458.7MB

  • Sample

    240921-vb6p4asfkg

  • MD5

    4630f6276c73b41174821055b1d545ef

  • SHA1

    5976040a4bc156ca68e0f7e98e300ed87e5fa960

  • SHA256

    53884a3333a9b18418799c373090f594eeccac1c8106011bcad9722f08177994

  • SHA512

    2215f6c5bdb19e0762a7a664a678ee5333b30c4fecaf11ca4e7e3425801f8bbc38f8e5af38bbde6c8cb90e62f6e34a17e357baaee86848da397cb69ce13c4f53

  • SSDEEP

    12582912:/wljEKuC5KD5Thy9HdEnDInJ1hGJQXah2AxTUtu/g98D39Kx:SIKuC5Kd4iDchGSXMrx9/pD398

Malware Config

Targets

    • Target

      cracked check/IDA Professional 9 Activation Tool.exe

    • Size

      701KB

    • MD5

      8ff3e1cfda3f4a5fd5594ca097e5b7df

    • SHA1

      4601fd3f6cd6dcabbc894c233b8077eae59ebc89

    • SHA256

      ea68f2b811110e011fbe8e8433ec0ccbf43d6611e2680a42724881092a2bede1

    • SHA512

      351c910a36b32e4789093c9e073e777a37381fdc0357c758093e300592b5a48a3f118acac5998e7ba6ee30b11a50759e80d793045a34199fd92add2af92aee91

    • SSDEEP

      12288:Etx6nde+8kWA0N1BD5kN/Z1NFIrPlbS67xKCdb9B1/OIwJrVNDd1Lk2uh:EtxcIzkW31bkN7Q9ewDb9BMJVNDnLk2u

    Score
    10/10
    • Industroyer

      Contains code associated with parsing industroyer's configuration file.

    • Event Triggered Execution: Image File Execution Options Injection

    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      cracked check/IDA Professional v9.0.24.0807 [x64].exe

    • Size

      462.9MB

    • MD5

      18565723b9ebc49e042c6f80bb9f5c1e

    • SHA1

      890b5dc50e4b8bd4e50e21a3f104852e7e7e1a86

    • SHA256

      4058fb9bdb56658b82ed2b4d1d5bafd45fbfd4cecb671d7cb4087352bf6f2155

    • SHA512

      d0c707f909fe7a3583797a8e2bdf93f52b985080b7ca65a200fdcec361b3ddaa876e6b45ee59a6eb9b7646a486665f7e121eff5b3c07f9606cbd26a068f6eaa7

    • SSDEEP

      12582912:1z5tDgM1g2NU1A9FxtCypOOZsZquwbxvPEvqNFLblJ/i:1z5tssg2N+K/ObquGJPpVlJ/

    • Industroyer

      Contains code associated with parsing industroyer's configuration file.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks