Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    134b8726237667b737f7909f095ea23861ef1e92461684fce574b9a94b1c6001

  • Size

    294KB

  • Sample

    241210-hbg1hs1rdl

  • MD5

    72e687369672b8658af633d6671ab9fa

  • SHA1

    b39777a1b2da9f8883875ae2e8b33e8f4f553d07

  • SHA256

    134b8726237667b737f7909f095ea23861ef1e92461684fce574b9a94b1c6001

  • SHA512

    2858fdf75f5ddef92b89478fbab2f482634f303a9c18ca53f8061bb4c42bf7d2a90c3f8b490472c2afa829e3bdcbf3bba117c27dedcba9a52011622d510e7d2e

  • SSDEEP

    6144:2+bfb9iR+O1bzgQdR5cMCVFZSQVKWdFf/uyJPAOtUsCWBV+UdvrEFp7hKLy:2ou+O1bzgQdkTPlFf/uyJPosCWBjvrEN

Malware Config

Targets

    • Target

      134b8726237667b737f7909f095ea23861ef1e92461684fce574b9a94b1c6001

    • Size

      294KB

    • MD5

      72e687369672b8658af633d6671ab9fa

    • SHA1

      b39777a1b2da9f8883875ae2e8b33e8f4f553d07

    • SHA256

      134b8726237667b737f7909f095ea23861ef1e92461684fce574b9a94b1c6001

    • SHA512

      2858fdf75f5ddef92b89478fbab2f482634f303a9c18ca53f8061bb4c42bf7d2a90c3f8b490472c2afa829e3bdcbf3bba117c27dedcba9a52011622d510e7d2e

    • SSDEEP

      6144:2+bfb9iR+O1bzgQdR5cMCVFZSQVKWdFf/uyJPAOtUsCWBV+UdvrEFp7hKLy:2ou+O1bzgQdkTPlFf/uyJPosCWBjvrEN

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks