Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f
-
Size
73KB
-
Sample
221028-er7z4aeeb3
-
MD5
c01596d3dacb8e7eaf013c3e9c3a64d4
-
SHA1
3ef4c104d0663551eb955deba51b5361d9b87f0c
-
SHA256
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f
-
SHA512
f8ac72b8600c998838708b4698ee37c32f8fb89c1b0e0961b33064fcaeca78f757ad116f750c41ea05095b0cecfa1715cd8970e1372a2e72b10e809d667d4b73
-
SSDEEP
1536:P55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:7MSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f
-
Size
73KB
-
MD5
c01596d3dacb8e7eaf013c3e9c3a64d4
-
SHA1
3ef4c104d0663551eb955deba51b5361d9b87f0c
-
SHA256
4063cf3f5640a363e30d57e4bc84566ef47b720cbba3fb3af97bb02c06647c0f
-
SHA512
f8ac72b8600c998838708b4698ee37c32f8fb89c1b0e0961b33064fcaeca78f757ad116f750c41ea05095b0cecfa1715cd8970e1372a2e72b10e809d667d4b73
-
SSDEEP
1536:P55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:7MSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-