Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2d9c1e2e03947e49a77995ca0b4f481eea8a21933f749c8d5953e75c9a91039e

  • Size

    224KB

  • Sample

    240925-wj6kqssbqc

  • MD5

    62d77a372f81df60a488e17b551dbf5a

  • SHA1

    88bfb6960e390c210714c9db92a2e8a4e65ddfd9

  • SHA256

    2d9c1e2e03947e49a77995ca0b4f481eea8a21933f749c8d5953e75c9a91039e

  • SHA512

    2e76d251e1d2a78e61766bb0130b3fe5ffc752b0eb72c5091825ec9f9786aea48aa7bc63a5433a18a832ac68f7c2876b03c113f326b6555d0d640ee773b6a8b5

  • SSDEEP

    6144:ayY2zi7ajOcGLKZH2FaLw9hH4JdBV+UdvrEFp7hKIoB:ayY2zi+jK9hH4JdBjvrEH7iB

Malware Config

Targets

    • Target

      2d9c1e2e03947e49a77995ca0b4f481eea8a21933f749c8d5953e75c9a91039e

    • Size

      224KB

    • MD5

      62d77a372f81df60a488e17b551dbf5a

    • SHA1

      88bfb6960e390c210714c9db92a2e8a4e65ddfd9

    • SHA256

      2d9c1e2e03947e49a77995ca0b4f481eea8a21933f749c8d5953e75c9a91039e

    • SHA512

      2e76d251e1d2a78e61766bb0130b3fe5ffc752b0eb72c5091825ec9f9786aea48aa7bc63a5433a18a832ac68f7c2876b03c113f326b6555d0d640ee773b6a8b5

    • SSDEEP

      6144:ayY2zi7ajOcGLKZH2FaLw9hH4JdBV+UdvrEFp7hKIoB:ayY2zi+jK9hH4JdBjvrEH7iB

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks