Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1ea52495be9178162ed0cb5c5b09e7e6b9018bf4c4db6002e42880c756251e89
-
Size
936KB
-
Sample
230420-nnvd9she85
-
MD5
07b5402096892f7287a754dc9b2129a2
-
SHA1
7b0218428306ed34e3129fcb676520d3dd2700c0
-
SHA256
1ea52495be9178162ed0cb5c5b09e7e6b9018bf4c4db6002e42880c756251e89
-
SHA512
a41a96682e8be084fb6cb241b772505b02ca292966975365b3b765f64f7c13d2aa263c96a282c2cc1318016531f5e8385780721c17ce4d12941d568c4ea87e34
-
SSDEEP
24576:Qyx264EzNfNgvvNqiPAViKkA9XG1/cTDuPU:XcUzNf+v8iPA0KRXG1/ceP
Static task
static1
Malware Config
Targets
-
-
Target
1ea52495be9178162ed0cb5c5b09e7e6b9018bf4c4db6002e42880c756251e89
-
Size
936KB
-
MD5
07b5402096892f7287a754dc9b2129a2
-
SHA1
7b0218428306ed34e3129fcb676520d3dd2700c0
-
SHA256
1ea52495be9178162ed0cb5c5b09e7e6b9018bf4c4db6002e42880c756251e89
-
SHA512
a41a96682e8be084fb6cb241b772505b02ca292966975365b3b765f64f7c13d2aa263c96a282c2cc1318016531f5e8385780721c17ce4d12941d568c4ea87e34
-
SSDEEP
24576:Qyx264EzNfNgvvNqiPAViKkA9XG1/cTDuPU:XcUzNf+v8iPA0KRXG1/ceP
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-