Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fabf12aafc3ef246cde6884d2b978ac0ab590379cc3f905113b030cf460d06edN

  • Size

    364KB

  • Sample

    241015-1j37tsydnb

  • MD5

    f1dec3c207d40665a03a96417eb45550

  • SHA1

    1d088cc17604756c6a244f776af8ed4cb2e6e4de

  • SHA256

    fabf12aafc3ef246cde6884d2b978ac0ab590379cc3f905113b030cf460d06ed

  • SHA512

    c8080de83152e7cc7bf48bc6cd80454b6095df7bb2544f4fedbdbc603f4ea1863ddb9033f86a04dfcde56b10b714f2000fdc4aacf3b3f4252c93a7e71cac4989

  • SSDEEP

    1536:dlGUzXF8CvrJ4PBhDP35y6hx1lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:nGUh8k6DP3w6hx1ltOrWKDBr+yJb

Malware Config

Extracted

Family

gozi

Targets

    • Target

      fabf12aafc3ef246cde6884d2b978ac0ab590379cc3f905113b030cf460d06edN

    • Size

      364KB

    • MD5

      f1dec3c207d40665a03a96417eb45550

    • SHA1

      1d088cc17604756c6a244f776af8ed4cb2e6e4de

    • SHA256

      fabf12aafc3ef246cde6884d2b978ac0ab590379cc3f905113b030cf460d06ed

    • SHA512

      c8080de83152e7cc7bf48bc6cd80454b6095df7bb2544f4fedbdbc603f4ea1863ddb9033f86a04dfcde56b10b714f2000fdc4aacf3b3f4252c93a7e71cac4989

    • SSDEEP

      1536:dlGUzXF8CvrJ4PBhDP35y6hx1lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:nGUh8k6DP3w6hx1ltOrWKDBr+yJb

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

MITRE ATT&CK Enterprise v15

Tasks