Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi
-
Size
1.6MB
-
Sample
221005-q7h7fsegar
-
MD5
555ba9ad7a9978eeb4bdefa180cef487
-
SHA1
86951455adb15ed78537172dbf4b18bd271e32e7
-
SHA256
3b25269ee1bf950e149d758ce4074f0ddca17282fb933bc44f9a77e6d495dc1b
-
SHA512
210894f614c2c1c022254ca52656a7fdb4a5617d58200e8ee07b159500aef1b06af1580b5d321c71cf48f48c06363feda05fb4b4f9cdb325643e819f2a37448f
-
SSDEEP
49152:4wvNitjVqoA5AhxDOjSETeVfb/6LYgqHDDWs:UtMJAvOjSEPYgqHfN
Static task
static1
Behavioral task
behavioral1
Sample
Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi
-
Size
1.6MB
-
MD5
555ba9ad7a9978eeb4bdefa180cef487
-
SHA1
86951455adb15ed78537172dbf4b18bd271e32e7
-
SHA256
3b25269ee1bf950e149d758ce4074f0ddca17282fb933bc44f9a77e6d495dc1b
-
SHA512
210894f614c2c1c022254ca52656a7fdb4a5617d58200e8ee07b159500aef1b06af1580b5d321c71cf48f48c06363feda05fb4b4f9cdb325643e819f2a37448f
-
SSDEEP
49152:4wvNitjVqoA5AhxDOjSETeVfb/6LYgqHDDWs:UtMJAvOjSEPYgqHfN
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-