Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    37e5967ee5f1218987937bf2349e6b2c67d47f254a4b25fdf83ccafd6bd87b8a

  • Size

    183KB

  • Sample

    241014-zglz4azaqp

  • MD5

    fa1fa2a6d0010eb19273b99083edc4f5

  • SHA1

    6cf01330792abaada29c497001c6b0c98c6efa51

  • SHA256

    37e5967ee5f1218987937bf2349e6b2c67d47f254a4b25fdf83ccafd6bd87b8a

  • SHA512

    30b800a0a45536d678ae787141ad7d67967a580c5317271a97e570ebe28506d41b7fef8fb59e9905cf1df67abd0ed2cedf69a181f687afdeeabbe3a30d2844d8

  • SSDEEP

    3072:zYDDQYmVX9y/vHw4/QljoV43DgvP5pSBlf+ATxbUX9ff1TmrcSQLPuYxS:zYDUVX9KvwpkgBBlfhbUd0LePN

Score
7/10

Malware Config

Targets

    • Target

      37e5967ee5f1218987937bf2349e6b2c67d47f254a4b25fdf83ccafd6bd87b8a

    • Size

      183KB

    • MD5

      fa1fa2a6d0010eb19273b99083edc4f5

    • SHA1

      6cf01330792abaada29c497001c6b0c98c6efa51

    • SHA256

      37e5967ee5f1218987937bf2349e6b2c67d47f254a4b25fdf83ccafd6bd87b8a

    • SHA512

      30b800a0a45536d678ae787141ad7d67967a580c5317271a97e570ebe28506d41b7fef8fb59e9905cf1df67abd0ed2cedf69a181f687afdeeabbe3a30d2844d8

    • SSDEEP

      3072:zYDDQYmVX9y/vHw4/QljoV43DgvP5pSBlf+ATxbUX9ff1TmrcSQLPuYxS:zYDUVX9KvwpkgBBlfhbUd0LePN

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks