Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

szerződés-pdf.exe

windows7-x64

10

szerződés-pdf.exe

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    27032025_0054_26032025_szerződés-pdf.img

  • Size

    1.3MB

  • Sample

    250327-a9bx6axny2

  • MD5

    62e7889598675f747dad8a582a07e5c4

  • SHA1

    ec9f9b344c37a76f24b3f44e8c02679e20be5d20

  • SHA256

    f6b9f8973d8ba1ff35481fd4e12b38a51306385abbcaa77d6c1de0a7cabd4baa

  • SHA512

    b72fde0360aa76ede6cc6c221035c545baaa8dafd35f07725c70eac82ce8b6d37f9433576ef01030c2a16804ae5c7b7ca21bec90fdd2426a3639dd778ef23982

  • SSDEEP

    24576:7dYAD9m2Yf+DlEhoicwrJnj+XjBxhaYPAYGuxcDKLT:7X9mfhoizRyXHC/DKLT

Score
10/10
guloaderdiscoverydownloader

Malware Config

Targets

    • Target

      szerződés-pdf.bat

    • Size

      811KB

    • MD5

      8c9a9c036d90711993d0fa59761035fc

    • SHA1

      9fb68ab16c2be99334b2436c5222e3cb75e4fa2c

    • SHA256

      0967e819ae99a6ff7e6e5d1320f6627e25bb643eff4b3cc21f8002fc2eda272e

    • SHA512

      96721499a6e6b891b0c644f506acb124b9f880c0a58e5980047ef5b013455f2902d8d710ac8e969b6d5e0e36f9bf1bab3e54047743757d2e09e3c951969f9e89

    • SSDEEP

      24576:mdYAD9m2Yf+DlEhoicwrJnj+XjBxhaYPAYGuxcDKLT:mX9mfhoizRyXHC/DKLT

    Score
    10/10
    guloaderdiscoverydownloader

    • Guloader family

      guloader

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

      downloaderguloader

    • Loads dropped DLL

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      9625d5b1754bc4ff29281d415d27a0fd

    • SHA1

      80e85afc5cccd4c0a3775edbb90595a1a59f5ce0

    • SHA256

      c2f405d7402f815d0c3fadd9a50f0bbbb1bab9aa38fe347823478a2587299448

    • SHA512

      dce52b640897c2e8dbfd0a1472d5377fa91fb9cf1aeff62604d014bccbe5b56af1378f173132abeb0edd18c225b9f8f5e3d3e72434aed946661e036c779f165b

    • SSDEEP

      192:eX24sihno00Wfl97nH6BenXwWobpWBTtvShJ5omi7dJWjOlqSlS:D8QIl972eXqlWBFSt273YOlqz

    Score
    3/10
    discovery
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks