Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

szerződés-pdf.exe

windows7-x64

10

szerződés-pdf.exe

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    26032025_1658_26032025_szerződés-pdf.img

  • Size

    1.3MB

  • Sample

    250326-vg51ra1mt5

  • MD5

    be45f69aac2603e0d85bae38471c25ba

  • SHA1

    1650a9796d1b0bc5ccd30a86cbe861438819e5d1

  • SHA256

    3eb9f9daff5ea9886299a1b30b551f71cec5b196bca64669d44bed6bb2ab9495

  • SHA512

    2c1785b4670b85b43496c3807ea84c033414c7ee79ff5bd149707eff33f56ab2110b36ca4b2a338e441f6f1d0d158c04968f79b658cb72c10dd5dd35774ab512

  • SSDEEP

    24576:7dYAD9m2Yf+DlEhoicwrJnj+XjBxhaYPAYGuxcDKLT:7X9mfhoizRyXHC/DKLT

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      szerződés-pdf.bat

    • Size

      811KB

    • MD5

      8c9a9c036d90711993d0fa59761035fc

    • SHA1

      9fb68ab16c2be99334b2436c5222e3cb75e4fa2c

    • SHA256

      0967e819ae99a6ff7e6e5d1320f6627e25bb643eff4b3cc21f8002fc2eda272e

    • SHA512

      96721499a6e6b891b0c644f506acb124b9f880c0a58e5980047ef5b013455f2902d8d710ac8e969b6d5e0e36f9bf1bab3e54047743757d2e09e3c951969f9e89

    • SSDEEP

      24576:mdYAD9m2Yf+DlEhoicwrJnj+XjBxhaYPAYGuxcDKLT:mX9mfhoizRyXHC/DKLT

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader family

      guloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      9625d5b1754bc4ff29281d415d27a0fd

    • SHA1

      80e85afc5cccd4c0a3775edbb90595a1a59f5ce0

    • SHA256

      c2f405d7402f815d0c3fadd9a50f0bbbb1bab9aa38fe347823478a2587299448

    • SHA512

      dce52b640897c2e8dbfd0a1472d5377fa91fb9cf1aeff62604d014bccbe5b56af1378f173132abeb0edd18c225b9f8f5e3d3e72434aed946661e036c779f165b

    • SSDEEP

      192:eX24sihno00Wfl97nH6BenXwWobpWBTtvShJ5omi7dJWjOlqSlS:D8QIl972eXqlWBFSt273YOlqz

    Score
    3/10
    discovery
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks