Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
10a073ab8ce6e55261d97ecb3af016d70ddf04dc3d6298d0f5e27969fd2a58c3
-
Size
421KB
-
Sample
221019-3j6n3adcbr
-
MD5
90e50faf089103e6d2544170c7078420
-
SHA1
7f8bb7dca4234e423b693014045007ebbca5fda6
-
SHA256
10a073ab8ce6e55261d97ecb3af016d70ddf04dc3d6298d0f5e27969fd2a58c3
-
SHA512
6634ff2517a0b6135770ddf95bb89df1f2c187dc40310636912bf703fc3b5b922d900d877aa42ba2ecb43dd29f92cf0d270930f59349cb6b80d9eac55873d676
-
SSDEEP
6144:5/iT2k74cw/gPd9Ow1E6AFNbYSWySw/NCtyAZbX1fR3:5/HQw4isEZESYmNCvd153
Malware Config
Targets
-
-
Target
10a073ab8ce6e55261d97ecb3af016d70ddf04dc3d6298d0f5e27969fd2a58c3
-
Size
421KB
-
MD5
90e50faf089103e6d2544170c7078420
-
SHA1
7f8bb7dca4234e423b693014045007ebbca5fda6
-
SHA256
10a073ab8ce6e55261d97ecb3af016d70ddf04dc3d6298d0f5e27969fd2a58c3
-
SHA512
6634ff2517a0b6135770ddf95bb89df1f2c187dc40310636912bf703fc3b5b922d900d877aa42ba2ecb43dd29f92cf0d270930f59349cb6b80d9eac55873d676
-
SSDEEP
6144:5/iT2k74cw/gPd9Ow1E6AFNbYSWySw/NCtyAZbX1fR3:5/HQw4isEZESYmNCvd153
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-