Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cfc1c4a014b005431cf842a9a887b9fd84b1f575
-
Size
660KB
-
Sample
230201-qgx8pagc3w
-
MD5
3b66a4c59d3eadfbb396721c70834ddd
-
SHA1
cfc1c4a014b005431cf842a9a887b9fd84b1f575
-
SHA256
fde6f4b70768e329b0d725843094cad8ee50638b32956c0edeefed2d551508d1
-
SHA512
3302d2043cf5b15f26748b1be8475021d96446456b53c634b940d2339d6f0f24e5d4ca8cac1009c0af942997f0a49c5558f2e8cfc8ad391df81c576044697eb4
-
SSDEEP
12288:J4reswkUI5NB9y+EdYHsGC29KWeh3ih9HfA:JBkUI54GCFBYT4
Static task
static1
Behavioral task
behavioral1
Sample
cfc1c4a014b005431cf842a9a887b9fd84b1f575.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
cfc1c4a014b005431cf842a9a887b9fd84b1f575.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
cfc1c4a014b005431cf842a9a887b9fd84b1f575
-
Size
660KB
-
MD5
3b66a4c59d3eadfbb396721c70834ddd
-
SHA1
cfc1c4a014b005431cf842a9a887b9fd84b1f575
-
SHA256
fde6f4b70768e329b0d725843094cad8ee50638b32956c0edeefed2d551508d1
-
SHA512
3302d2043cf5b15f26748b1be8475021d96446456b53c634b940d2339d6f0f24e5d4ca8cac1009c0af942997f0a49c5558f2e8cfc8ad391df81c576044697eb4
-
SSDEEP
12288:J4reswkUI5NB9y+EdYHsGC29KWeh3ih9HfA:JBkUI54GCFBYT4
Score7/10-
Accesses Microsoft Outlook profiles
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-