Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce
-
Size
2.6MB
-
Sample
221227-wqgvysah2t
-
MD5
336aa18330b97fff9c99312ad63c0464
-
SHA1
af9e917778bf2b87aabaa39a31ec6e2219928a61
-
SHA256
d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce
-
SHA512
0d8a65b027f619fe7d0fb186eb5fcf3e7b7c40e4ef1de8b29f548946e314ee2576aa37d1fa2c997fdaecc67c2e95f5c9b17fa8857f1628a32e601866e66184b8
-
SSDEEP
49152:9+91DmlwRPipQJ8c6DDi6b6Yd09C0KX8Fr9JpwI1YhwnGqsGp6Ku:9+9PSS846YC3XobQ7ou
Static task
static1
Malware Config
Targets
-
-
Target
d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce
-
Size
2.6MB
-
MD5
336aa18330b97fff9c99312ad63c0464
-
SHA1
af9e917778bf2b87aabaa39a31ec6e2219928a61
-
SHA256
d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce
-
SHA512
0d8a65b027f619fe7d0fb186eb5fcf3e7b7c40e4ef1de8b29f548946e314ee2576aa37d1fa2c997fdaecc67c2e95f5c9b17fa8857f1628a32e601866e66184b8
-
SSDEEP
49152:9+91DmlwRPipQJ8c6DDi6b6Yd09C0KX8Fr9JpwI1YhwnGqsGp6Ku:9+9PSS846YC3XobQ7ou
-
XMRig Miner payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Uses the VBS compiler for execution
-
Suspicious use of SetThreadContext
-