Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5ac9585966c3b6e63fcc13785cd93e5b6b14cf7a58245eb98065ceb9b5083033

  • Size

    286KB

  • Sample

    250131-h7sf5ayrgz

  • MD5

    69bb0ddebec26b23c07d4831c6041c12

  • SHA1

    0ceecfeeb3325e71c9ed6f608e80ab201fdeac3d

  • SHA256

    5ac9585966c3b6e63fcc13785cd93e5b6b14cf7a58245eb98065ceb9b5083033

  • SHA512

    552e831bb3041e7789f5d4fef964e5572397f65cc38f71029e3445b04f1fbd5a16757b67ea3358bed71b95c040652a9a729159d231c8964e1252a604d90a18d6

  • SSDEEP

    6144:pcrR/5kHouyXnZhB+R8WHqBV+UdvrEFp7hKY:pcl/JuyXnPB+R8WHqBjvrEH7b

Malware Config

Targets

    • Target

      5ac9585966c3b6e63fcc13785cd93e5b6b14cf7a58245eb98065ceb9b5083033

    • Size

      286KB

    • MD5

      69bb0ddebec26b23c07d4831c6041c12

    • SHA1

      0ceecfeeb3325e71c9ed6f608e80ab201fdeac3d

    • SHA256

      5ac9585966c3b6e63fcc13785cd93e5b6b14cf7a58245eb98065ceb9b5083033

    • SHA512

      552e831bb3041e7789f5d4fef964e5572397f65cc38f71029e3445b04f1fbd5a16757b67ea3358bed71b95c040652a9a729159d231c8964e1252a604d90a18d6

    • SSDEEP

      6144:pcrR/5kHouyXnZhB+R8WHqBV+UdvrEFp7hKY:pcl/JuyXnPB+R8WHqBjvrEH7b

    • Floxif family

    • Floxif, Floodfix

      Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.

    • Detects Floxif payload

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks