Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe

  • Size

    1.8MB

  • Sample

    250102-br2xasvrct

  • MD5

    7096a99b6ebadcd73318516cb8af9ba0

  • SHA1

    3d7118366b4556f987ecb836a954951db2a3439d

  • SHA256

    7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5

  • SHA512

    27b366ac2f22eb4021bf96b2fb7e46f948f3aa3fab94f5a559ca5d3765b75c2720087f230c11ae9089b1a7588016fe1ab42266077a5702428f8ef0260fd12dcc

  • SSDEEP

    24576:GbJDcYm+kU3QAOTUlbM9+kU3QAOTUlbMU:IDufA2WbM9fA2WbMU

Malware Config

Targets

    • Target

      7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5.exe

    • Size

      1.8MB

    • MD5

      7096a99b6ebadcd73318516cb8af9ba0

    • SHA1

      3d7118366b4556f987ecb836a954951db2a3439d

    • SHA256

      7a7a461eb2717b429008f8c75abb075de4355ef677dbe4bdef5830653d30c5b5

    • SHA512

      27b366ac2f22eb4021bf96b2fb7e46f948f3aa3fab94f5a559ca5d3765b75c2720087f230c11ae9089b1a7588016fe1ab42266077a5702428f8ef0260fd12dcc

    • SSDEEP

      24576:GbJDcYm+kU3QAOTUlbM9+kU3QAOTUlbMU:IDufA2WbM9fA2WbMU

    • Expiro family

    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks