Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

c2dcdab49f...f4.exe

windows7-x64

10

c2dcdab49f...f4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2dcdab49f620d41cdff93c58a50c760906ea2565001145564a1491defec08f4.exe

  • Size

    11KB

  • Sample

    250318-j4e73a1mw2

  • MD5

    3cb61ce448a806e79ce88d06e992cc9d

  • SHA1

    0a5e460360364f1b5799df7a2168892c04156bca

  • SHA256

    c2dcdab49f620d41cdff93c58a50c760906ea2565001145564a1491defec08f4

  • SHA512

    4d36781c5986a89d3bea470341223245abbd5e71de8233f2b0a969f0a258dda908588efef34fb354684760c631acb723711108e58ec3d068222ffe692d121380

  • SSDEEP

    192:d6eQ8BFOXpVfXfGhegWJJfxMLkWScZqYSi/HB6U:d6eQ8nAnOgDTxMQWSc9/6U

Score
10/10
phorphiexdiscoveryloaderpersistencetrojanworm

Malware Config

Extracted

Family

phorphiex

C2

http://twizt.net

Targets

    • Target

      c2dcdab49f620d41cdff93c58a50c760906ea2565001145564a1491defec08f4.exe

    • Size

      11KB

    • MD5

      3cb61ce448a806e79ce88d06e992cc9d

    • SHA1

      0a5e460360364f1b5799df7a2168892c04156bca

    • SHA256

      c2dcdab49f620d41cdff93c58a50c760906ea2565001145564a1491defec08f4

    • SHA512

      4d36781c5986a89d3bea470341223245abbd5e71de8233f2b0a969f0a258dda908588efef34fb354684760c631acb723711108e58ec3d068222ffe692d121380

    • SSDEEP

      192:d6eQ8BFOXpVfXfGhegWJJfxMLkWScZqYSi/HB6U:d6eQ8nAnOgDTxMQWSc9/6U

    Score
    10/10
    phorphiexdiscoveryloaderpersistencetrojanworm

    • Phorphiex family

      phorphiex

    • Phorphiex, Phorpiex

      Phorphiex or Phorpiex Malware family which infects systems to distribute other malicious payloads such as ransomware, stealers and cryptominers.

      wormtrojanloaderphorphiex

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks