Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e7e2acdb6dc8a0703ccf01e693bbc08c9aa89c42903b311968711929ec39ece1

  • Size

    70KB

  • Sample

    241111-1pe27a1jek

  • MD5

    99ace9f0353ee3023903f84ed8e0977e

  • SHA1

    af5ad132923cea790bb75a3109cbe8071607e2c7

  • SHA256

    e7e2acdb6dc8a0703ccf01e693bbc08c9aa89c42903b311968711929ec39ece1

  • SHA512

    32668e8832a60cc9483ef124351dc695be43cc288757a7cbefb06be629b3e55710facaa8efb6b41e9e01f27ca478ec8463f78724d3306cc3a38aa8424ca5535a

  • SSDEEP

    1536:tOKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+1YW/ESKQHS1yXJFa5etdv:AKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://congtycamvinh.com/plugins/jG3iqpQaTL1TXYMolH/

xlm40.dropper

http://ecube.com.mx/e2oCWBnC/6wp2K4sfQmVIRy6ZvdiH/

xlm40.dropper

http://dulichdichvu.net/libraries/6vhzwoZoNDSMtSC/

xlm40.dropper

http://gnif.org/administrator/G68HwUGlKNJNU2vh5cz/

xlm40.dropper

https://edoraseguros.com.br/cgi-bin/l7ZERv5deNsfzlZUZ/

xlm40.dropper

https://sanoma.allrent.nl/cgi-bin/KXbI5OhLJ/

Targets

    • Target

      e7e2acdb6dc8a0703ccf01e693bbc08c9aa89c42903b311968711929ec39ece1

    • Size

      70KB

    • MD5

      99ace9f0353ee3023903f84ed8e0977e

    • SHA1

      af5ad132923cea790bb75a3109cbe8071607e2c7

    • SHA256

      e7e2acdb6dc8a0703ccf01e693bbc08c9aa89c42903b311968711929ec39ece1

    • SHA512

      32668e8832a60cc9483ef124351dc695be43cc288757a7cbefb06be629b3e55710facaa8efb6b41e9e01f27ca478ec8463f78724d3306cc3a38aa8424ca5535a

    • SSDEEP

      1536:tOKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+1YW/ESKQHS1yXJFa5etdv:AKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+

    Score
    10/10

MITRE ATT&CK Enterprise v15

Tasks