Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9
-
Size
510KB
-
Sample
220918-y4pttsffcm
-
MD5
ed6ef92fd6754103464e85fa2599c687
-
SHA1
18e351964011ee9fc577c1d5e203ed26cd42be9d
-
SHA256
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9
-
SHA512
3412545ae57aaa36998810e1d996d69e79a11ebcf878ee58024ec5c9fa0ef3c4d4f96775212335e577bb753cf435689285a02872647cbcfb3789f2135dd9f65e
-
SSDEEP
12288:0UWB0BhudkAHhly0Tbf/SA/q0U0SXBh2qnu6:cSBhudkAvTrSA/q30SXBh2+u6
Static task
static1
Behavioral task
behavioral1
Sample
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9
-
Size
510KB
-
MD5
ed6ef92fd6754103464e85fa2599c687
-
SHA1
18e351964011ee9fc577c1d5e203ed26cd42be9d
-
SHA256
baae5bbaf2decf7af9b22c4d10f66c7c77c9ebc7b73476f7cbe449d2bba97ed9
-
SHA512
3412545ae57aaa36998810e1d996d69e79a11ebcf878ee58024ec5c9fa0ef3c4d4f96775212335e577bb753cf435689285a02872647cbcfb3789f2135dd9f65e
-
SSDEEP
12288:0UWB0BhudkAHhly0Tbf/SA/q0U0SXBh2qnu6:cSBhudkAvTrSA/q30SXBh2+u6
Score7/10-
Accesses Microsoft Outlook profiles
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-