Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Document-20-18-07.js

  • Size

    339KB

  • Sample

    241003-y8ejnaydka

  • MD5

    75e64bec47916e4860cb6b151fcbaed6

  • SHA1

    0102db540317b48d319cfb5b3538e364ff2bac6b

  • SHA256

    0d9d65a1f9c447584a022a866fed2399bf8b42e2a0087a786e87087bba1e18f1

  • SHA512

    208d0b1239c531d34f3bba59a950cf0b791e85870c6cc4512327733010e02fb4b932d98ff13d40cb758636453ad3bdc84509a1c0778facf47a56ecb79a8daee7

  • SSDEEP

    6144:TnOwLgNJEXMI/ptQxobwi+a0xPr4fTpJ2Ll29NOzWC22hFMPPr6wWHclWErffr+:q6gNJEXhBtmobwi+bMT2LlKOztPFmGHd

Malware Config

Targets

    • Target

      Document-20-18-07.js

    • Size

      339KB

    • MD5

      75e64bec47916e4860cb6b151fcbaed6

    • SHA1

      0102db540317b48d319cfb5b3538e364ff2bac6b

    • SHA256

      0d9d65a1f9c447584a022a866fed2399bf8b42e2a0087a786e87087bba1e18f1

    • SHA512

      208d0b1239c531d34f3bba59a950cf0b791e85870c6cc4512327733010e02fb4b932d98ff13d40cb758636453ad3bdc84509a1c0778facf47a56ecb79a8daee7

    • SSDEEP

      6144:TnOwLgNJEXMI/ptQxobwi+a0xPr4fTpJ2Ll29NOzWC22hFMPPr6wWHclWErffr+:q6gNJEXhBtmobwi+bMT2LlKOztPFmGHd

    • Brute Ratel C4

      A customized command and control framework for red teaming and adversary simulation.

    • Bruteratel family

    • Detect BruteRatel badger

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks