Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1f9b2c14cb7afa487e73800c02eb92c077e2e3b22bce200b3375891ebba5c13f

  • Size

    544KB

  • Sample

    250127-y5ys5atrbz

  • MD5

    64147327cc416319a8dcadae1ea9b25c

  • SHA1

    825d0a6ae705f53d9041a1d79ea43326d35577ae

  • SHA256

    1f9b2c14cb7afa487e73800c02eb92c077e2e3b22bce200b3375891ebba5c13f

  • SHA512

    b62a2deb9166748406321cf89447cd59683173f6087e634666b7dcf77391f7f70e4fdd185ca985149e1ccc71a98d07cddc4bcd3d2d7489f2fcb7bc9cf882bafa

  • SSDEEP

    12288:LTbmbvN1jVKS3+dIPeouFRYoevk2hpwv5w5cBjvrEH7p:LTbmbvN1VKRdIg2hpwv9rEH7p

Malware Config

Targets

    • Target

      1f9b2c14cb7afa487e73800c02eb92c077e2e3b22bce200b3375891ebba5c13f

    • Size

      544KB

    • MD5

      64147327cc416319a8dcadae1ea9b25c

    • SHA1

      825d0a6ae705f53d9041a1d79ea43326d35577ae

    • SHA256

      1f9b2c14cb7afa487e73800c02eb92c077e2e3b22bce200b3375891ebba5c13f

    • SHA512

      b62a2deb9166748406321cf89447cd59683173f6087e634666b7dcf77391f7f70e4fdd185ca985149e1ccc71a98d07cddc4bcd3d2d7489f2fcb7bc9cf882bafa

    • SSDEEP

      12288:LTbmbvN1jVKS3+dIPeouFRYoevk2hpwv5w5cBjvrEH7p:LTbmbvN1VKRdIg2hpwv9rEH7p

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks