Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    08282bf480bc42a409c74d8d2c27dbf1840def907f92892f17d5fe1ca7e3b739N

  • Size

    135KB

  • Sample

    241012-k7hm2axgkr

  • MD5

    054a929198d8e58b89915c5a6bb5a050

  • SHA1

    047e8dcabd4b7dc337648d161c4cc26b954c37b0

  • SHA256

    08282bf480bc42a409c74d8d2c27dbf1840def907f92892f17d5fe1ca7e3b739

  • SHA512

    c55978c736adec445242a6146b3b3b959473017af1c0b3f89e6d4596d47986b4f1c5383b5757ecfd79d8d82f02846d1d87a5f39c9713f635a73c0e6e85f231a2

  • SSDEEP

    3072:uiC/82anJKoFmdPvhrN2lQBV+UdE+rECWp7hKRx:uD8rJjmdPvvBV+UdvrEFp7hKv

Malware Config

Targets

    • Target

      08282bf480bc42a409c74d8d2c27dbf1840def907f92892f17d5fe1ca7e3b739N

    • Size

      135KB

    • MD5

      054a929198d8e58b89915c5a6bb5a050

    • SHA1

      047e8dcabd4b7dc337648d161c4cc26b954c37b0

    • SHA256

      08282bf480bc42a409c74d8d2c27dbf1840def907f92892f17d5fe1ca7e3b739

    • SHA512

      c55978c736adec445242a6146b3b3b959473017af1c0b3f89e6d4596d47986b4f1c5383b5757ecfd79d8d82f02846d1d87a5f39c9713f635a73c0e6e85f231a2

    • SSDEEP

      3072:uiC/82anJKoFmdPvhrN2lQBV+UdE+rECWp7hKRx:uD8rJjmdPvvBV+UdvrEFp7hKv

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks