Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

c7d9bd4779...ad.exe

windows7-x64

10

c7d9bd4779...ad.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c7d9bd4779dd3496d935853471891c2b1f267365cbcff8b5cd75de4fe42d5fad

  • Size

    1.8MB

  • Sample

    241117-k4z3xawfqh

  • MD5

    f1c009ccf9de386201e83680bf5e7edc

  • SHA1

    7e0d154ecc009b5d83167555363f9433da9097da

  • SHA256

    c7d9bd4779dd3496d935853471891c2b1f267365cbcff8b5cd75de4fe42d5fad

  • SHA512

    3a0fe1a268e26ed397af3fe00040486bdaaba0baf0b821f896bf5d3b0a552cd4a3bb5490e96ea4e88074993dae19280f140d3b620c6435f8293e80fcc7d5dad6

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQmnVwYDHq:GemTLkNdfE0pZyo

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      c7d9bd4779dd3496d935853471891c2b1f267365cbcff8b5cd75de4fe42d5fad

    • Size

      1.8MB

    • MD5

      f1c009ccf9de386201e83680bf5e7edc

    • SHA1

      7e0d154ecc009b5d83167555363f9433da9097da

    • SHA256

      c7d9bd4779dd3496d935853471891c2b1f267365cbcff8b5cd75de4fe42d5fad

    • SHA512

      3a0fe1a268e26ed397af3fe00040486bdaaba0baf0b821f896bf5d3b0a552cd4a3bb5490e96ea4e88074993dae19280f140d3b620c6435f8293e80fcc7d5dad6

    • SSDEEP

      49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQmnVwYDHq:GemTLkNdfE0pZyo

    Score
    10/10
    xmrigminer

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Xmrig family

      xmrig

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks