Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    download.png

  • Size

    7KB

  • Sample

    241003-v9956s1gqa

  • MD5

    ae5aeb13244a67adc092d617c10da8dc

  • SHA1

    90d27a22523ceca32449f74f509f62fb1a18d393

  • SHA256

    392799ee175e6f0ee8ef42c410a01fb4085ccbf6c258f4e3d4b56fee0c4d2535

  • SHA512

    53734c9b3f77aba63e81ec11d0fb31ab957c7324ce17e85e945ff37631077b1c9afe3c0dee0639ff7afb6ba634c85b0609ca2fb36282330bef88e0fd6e7f9034

  • SSDEEP

    192:WYbyHJ/13xis4VfGH3uRqm3GPwiFBy0NqAIv89mU3Xn:Wm+Biv+H3uiPwmBy0cAIv89z3Xn

Malware Config

Targets

    • Target

      download.png

    • Size

      7KB

    • MD5

      ae5aeb13244a67adc092d617c10da8dc

    • SHA1

      90d27a22523ceca32449f74f509f62fb1a18d393

    • SHA256

      392799ee175e6f0ee8ef42c410a01fb4085ccbf6c258f4e3d4b56fee0c4d2535

    • SHA512

      53734c9b3f77aba63e81ec11d0fb31ab957c7324ce17e85e945ff37631077b1c9afe3c0dee0639ff7afb6ba634c85b0609ca2fb36282330bef88e0fd6e7f9034

    • SSDEEP

      192:WYbyHJ/13xis4VfGH3uRqm3GPwiFBy0NqAIv89mU3Xn:Wm+Biv+H3uiPwmBy0cAIv89z3Xn

    • Downloads MZ/PE file

    • Possible privilege escalation attempt

    • Executes dropped EXE

    • Modifies file permissions

    • File and Directory Permissions Modification: Windows File and Directory Permissions Modification

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks