Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    30713c9db29f1185d482eb9c5491dc7d68dbf8de20477e6ac866e8e8b3d87244

  • Size

    4.7MB

  • Sample

    241224-hfy5lasmhw

  • MD5

    e93e4f22d9afe1f1ade66d636f25c380

  • SHA1

    1ab854cdb1c237be7fbe5a6230273414117fde2a

  • SHA256

    30713c9db29f1185d482eb9c5491dc7d68dbf8de20477e6ac866e8e8b3d87244

  • SHA512

    2dba62e5e9d9971b85ab169a97aa18846a57a4dd69dcddff67c80ca785dd34bc2a40a30b2b31943a3ca289692e9306e94793e2a22a9d8debb98211f36ca88517

  • SSDEEP

    98304:Q0WXxnoJ2Pn/Y4MpMCkGoY9yY9F0GFvNIDc09EzcLRmOCZ:QD6yn/YHroY9yY9ewvNvgx4

Malware Config

Targets

    • Target

      30713c9db29f1185d482eb9c5491dc7d68dbf8de20477e6ac866e8e8b3d87244

    • Size

      4.7MB

    • MD5

      e93e4f22d9afe1f1ade66d636f25c380

    • SHA1

      1ab854cdb1c237be7fbe5a6230273414117fde2a

    • SHA256

      30713c9db29f1185d482eb9c5491dc7d68dbf8de20477e6ac866e8e8b3d87244

    • SHA512

      2dba62e5e9d9971b85ab169a97aa18846a57a4dd69dcddff67c80ca785dd34bc2a40a30b2b31943a3ca289692e9306e94793e2a22a9d8debb98211f36ca88517

    • SSDEEP

      98304:Q0WXxnoJ2Pn/Y4MpMCkGoY9yY9F0GFvNIDc09EzcLRmOCZ:QD6yn/YHroY9yY9ewvNvgx4

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.