Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b
-
Size
211KB
-
Sample
221030-ddm74aachq
-
MD5
4d0f9bf577e586fa06e3b4bac4e89124
-
SHA1
ddf2d24b43a2c0cc7510741dad3a3b88b0f44656
-
SHA256
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b
-
SHA512
68da2f1948756c0373608c9273d06724607da0f243c46dfc039285151546d39822bb6a244c6a575f5885492d28b6b5cfe0c15410d8c0ced17bc1684642bb63f7
-
SSDEEP
3072:sr85C/qiFV/wkn2R6RKtYxt32TBfxrMjZqMNdhAl/TU+HgO9hz9tWJ:k9/d/KR6RKmxl2TBivzE/QqL9tWJ
Behavioral task
behavioral1
Sample
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b
-
Size
211KB
-
MD5
4d0f9bf577e586fa06e3b4bac4e89124
-
SHA1
ddf2d24b43a2c0cc7510741dad3a3b88b0f44656
-
SHA256
ba8998c9009819ce863722c07ed50bf53b3510fc7957925b52823d540c9ae85b
-
SHA512
68da2f1948756c0373608c9273d06724607da0f243c46dfc039285151546d39822bb6a244c6a575f5885492d28b6b5cfe0c15410d8c0ced17bc1684642bb63f7
-
SSDEEP
3072:sr85C/qiFV/wkn2R6RKtYxt32TBfxrMjZqMNdhAl/TU+HgO9hz9tWJ:k9/d/KR6RKmxl2TBivzE/QqL9tWJ
Score10/10-
Modifies system executable filetype association
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-