Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    32149a49924b67e859c9a5ee756551dad41df6915c18ad901481d3a0dbb6ef2f

  • Size

    277KB

  • Sample

    241213-zkg6bayldw

  • MD5

    fd6a6935facfb9b20c9120f6671e5d33

  • SHA1

    9a669ffa7ab068160cdfcd617114f3e2b8076ba8

  • SHA256

    32149a49924b67e859c9a5ee756551dad41df6915c18ad901481d3a0dbb6ef2f

  • SHA512

    70dcd87c7f7be319f767ec5d8e0211068fb45cbe2f08ad23e484187fac9be176e52c2e49140b3aede93a38613b77733066a0064035833d1ef488b5654a5fcfea

  • SSDEEP

    6144:BAXl/DRfCrC3dM7B+GCyKBV+UdvrEFp7hKQ2:BAXlbRfCq6B+GCyKBjvrEH7/2

Malware Config

Targets

    • Target

      32149a49924b67e859c9a5ee756551dad41df6915c18ad901481d3a0dbb6ef2f

    • Size

      277KB

    • MD5

      fd6a6935facfb9b20c9120f6671e5d33

    • SHA1

      9a669ffa7ab068160cdfcd617114f3e2b8076ba8

    • SHA256

      32149a49924b67e859c9a5ee756551dad41df6915c18ad901481d3a0dbb6ef2f

    • SHA512

      70dcd87c7f7be319f767ec5d8e0211068fb45cbe2f08ad23e484187fac9be176e52c2e49140b3aede93a38613b77733066a0064035833d1ef488b5654a5fcfea

    • SSDEEP

      6144:BAXl/DRfCrC3dM7B+GCyKBV+UdvrEFp7hKQ2:BAXlbRfCq6B+GCyKBjvrEH7/2

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks