Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
202409250ee26834769adc1f90aecc19e1f4fbadfloxifmafia
-
Size
1.7MB
-
Sample
240925-hjsf8a1bqr
-
MD5
0ee26834769adc1f90aecc19e1f4fbad
-
SHA1
f4e759e89c13cdb34df50a0b931ffc794414bb41
-
SHA256
f26f797ab07f109071684a1ee3375abbe1895418b5b00f873230f9c59962ceb1
-
SHA512
bbff5cb6ab706cda578662e350b88a307d07ade6da8c5b3291e8f1c92aff9ca972ef09a98b3f32876932e086d7b851def21a403c3333e9ea732b22ce3da699a0
-
SSDEEP
49152:pfq5kd+FPRy0vQlAskLVHOPXOkqsKxayVutJWq0fb/6xfDd2f8bL:85kd+FQ0vQlmLVHyXOkqsKxaGutsrYDT
Static task
static1
Behavioral task
behavioral1
Sample
202409250ee26834769adc1f90aecc19e1f4fbadfloxifmafia.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
202409250ee26834769adc1f90aecc19e1f4fbadfloxifmafia.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
202409250ee26834769adc1f90aecc19e1f4fbadfloxifmafia
-
Size
1.7MB
-
MD5
0ee26834769adc1f90aecc19e1f4fbad
-
SHA1
f4e759e89c13cdb34df50a0b931ffc794414bb41
-
SHA256
f26f797ab07f109071684a1ee3375abbe1895418b5b00f873230f9c59962ceb1
-
SHA512
bbff5cb6ab706cda578662e350b88a307d07ade6da8c5b3291e8f1c92aff9ca972ef09a98b3f32876932e086d7b851def21a403c3333e9ea732b22ce3da699a0
-
SSDEEP
49152:pfq5kd+FPRy0vQlAskLVHOPXOkqsKxayVutJWq0fb/6xfDd2f8bL:85kd+FQ0vQlmLVHyXOkqsKxaGutsrYDT
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-