Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
gM.dhnZAf.825544279.js
-
Size
58KB
-
Sample
230316-jqdr3shg72
-
MD5
e957a7e0df257710146c2b6d3faeb0a0
-
SHA1
f60110c9b3dc63f515020981f11fd785b6478ea2
-
SHA256
93f4f64afab5b1a7f495e0a74118c86050be4eceaac92710b171be208ca6a3a1
-
SHA512
d0922498544d23e0ecd34fc4fbe5f081a3e7d041bfbe4d286e88e208b0c5b65bff516eeed38b531ad13d31e89d9a4829d1b8ecb046d19af34168ab4d04a46b2e
-
SSDEEP
768:0Pck7kN/4F7PIWCirMSrVuRfmmKnRO6IM+G1T0Rvob5AfdbtDx00knaxe1DVIPRm:r/QDPVJRXbxNAfR7hsIp8dSC
Malware Config
Extracted
http://198.44.132.63/azoznP2HTX1.dat
http://128.254.207.26/9CJqq.dat
http://139.180.170.206/Hm6BeG.dat
http://94.131.115.19/wNRI9qF0Tqgi.dat
http://87.236.146.84/hbWBN.dat
http://206.53.48.51/VqLRtB3ecLE.dat
Targets
-
-
Target
gM.dhnZAf.825544279.js
-
Size
58KB
-
MD5
e957a7e0df257710146c2b6d3faeb0a0
-
SHA1
f60110c9b3dc63f515020981f11fd785b6478ea2
-
SHA256
93f4f64afab5b1a7f495e0a74118c86050be4eceaac92710b171be208ca6a3a1
-
SHA512
d0922498544d23e0ecd34fc4fbe5f081a3e7d041bfbe4d286e88e208b0c5b65bff516eeed38b531ad13d31e89d9a4829d1b8ecb046d19af34168ab4d04a46b2e
-
SSDEEP
768:0Pck7kN/4F7PIWCirMSrVuRfmmKnRO6IM+G1T0Rvob5AfdbtDx00knaxe1DVIPRm:r/QDPVJRXbxNAfR7hsIp8dSC
Score10/10-
Blocklisted process makes network request
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-