Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6468e9fb8c55d35ba2e5d932cd5126da27551c3bfb8896b215cedbba186807d2
-
Size
280KB
-
Sample
221202-as16qafc57
-
MD5
a6593f29ef7b4953dc43b50f1e3c145c
-
SHA1
669be91b5694caa745c49c3efbc020aa4d11b8c2
-
SHA256
6468e9fb8c55d35ba2e5d932cd5126da27551c3bfb8896b215cedbba186807d2
-
SHA512
e8b02cd600a6442f86c5bade399c63aaa6ea85e568b805682d1aa4889df492bec0d5f774dbb680f9616315df0b8e4f5db8a60b295a6b73a99ab4d9ba530b0a47
-
SSDEEP
6144:9lqk0GazmqAJHOlb4nDlClsfbLEaEAioyLwKds23efHXkD5D5QSqTsHwOjD:6kdazmqAJHOlb4nDYlibLEaEAioyLwKr
Malware Config
Targets
-
-
Target
6468e9fb8c55d35ba2e5d932cd5126da27551c3bfb8896b215cedbba186807d2
-
Size
280KB
-
MD5
a6593f29ef7b4953dc43b50f1e3c145c
-
SHA1
669be91b5694caa745c49c3efbc020aa4d11b8c2
-
SHA256
6468e9fb8c55d35ba2e5d932cd5126da27551c3bfb8896b215cedbba186807d2
-
SHA512
e8b02cd600a6442f86c5bade399c63aaa6ea85e568b805682d1aa4889df492bec0d5f774dbb680f9616315df0b8e4f5db8a60b295a6b73a99ab4d9ba530b0a47
-
SSDEEP
6144:9lqk0GazmqAJHOlb4nDlClsfbLEaEAioyLwKds23efHXkD5D5QSqTsHwOjD:6kdazmqAJHOlb4nDYlibLEaEAioyLwKr
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-