Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28
-
Size
8.6MB
-
Sample
221129-f1lc5acg8x
-
MD5
e2cfad6b5e1b6a2ce81485152f38cd57
-
SHA1
e99d57e507705732ed5f1ffd3da4e0676af4a49d
-
SHA256
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28
-
SHA512
2d523faf178654007776d3ddf0ce1c123e8f9b88ddda18f0176dfc10b7880ee60289ed481ae9c038bad0286d0c08c628b773aa8fab1fce22ce6694a9299b7efc
-
SSDEEP
49152:3s70hVTX6oiwRDAL8FOXff9tx2RK3J1MHq:3s70TXFRDAL8utxdM
Static task
static1
Behavioral task
behavioral1
Sample
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28
-
Size
8.6MB
-
MD5
e2cfad6b5e1b6a2ce81485152f38cd57
-
SHA1
e99d57e507705732ed5f1ffd3da4e0676af4a49d
-
SHA256
927cc7fb9726fefa6f2be027e9d00ebedb7176af263748ac27cff6fc3bbefc28
-
SHA512
2d523faf178654007776d3ddf0ce1c123e8f9b88ddda18f0176dfc10b7880ee60289ed481ae9c038bad0286d0c08c628b773aa8fab1fce22ce6694a9299b7efc
-
SSDEEP
49152:3s70hVTX6oiwRDAL8FOXff9tx2RK3J1MHq:3s70TXFRDAL8utxdM
Score8/10-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-