Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
846d373330c43c8cf7708e50156faa1fa00ee2d42818fe6439e55bbe1c2ca605
-
Size
939KB
-
Sample
230419-frwgqsgd82
-
MD5
29f06a45438d70395dceb902aa4867c3
-
SHA1
21377d0d3269d565d8f6497a25552031c96a7177
-
SHA256
846d373330c43c8cf7708e50156faa1fa00ee2d42818fe6439e55bbe1c2ca605
-
SHA512
b1a5730ec93c7dfb804804feb2d30f0c5ae949820fce725844785294d529832446a687157ec6a34948d89dcade1e8ff03100ae76eb3bef5cdeb76ffe8058811a
-
SSDEEP
24576:0ypkgbPMt/wXZr+yrA9gVpZfhWzSNVe55ay2hp/3:DjPeUZrS9gzWgg5qR
Static task
static1
Malware Config
Targets
-
-
Target
846d373330c43c8cf7708e50156faa1fa00ee2d42818fe6439e55bbe1c2ca605
-
Size
939KB
-
MD5
29f06a45438d70395dceb902aa4867c3
-
SHA1
21377d0d3269d565d8f6497a25552031c96a7177
-
SHA256
846d373330c43c8cf7708e50156faa1fa00ee2d42818fe6439e55bbe1c2ca605
-
SHA512
b1a5730ec93c7dfb804804feb2d30f0c5ae949820fce725844785294d529832446a687157ec6a34948d89dcade1e8ff03100ae76eb3bef5cdeb76ffe8058811a
-
SSDEEP
24576:0ypkgbPMt/wXZr+yrA9gVpZfhWzSNVe55ay2hp/3:DjPeUZrS9gzWgg5qR
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-