Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
28632077ab5107f5925ce6cf347060312015deffd1b8472e5b06e0c133f6ff40
-
Size
188KB
-
Sample
230425-sn41xsch7t
-
MD5
469eb4d876c8bd2093e47d2474fbc59b
-
SHA1
0ff84a77d24839137002c56e9ff60c7f92080ca8
-
SHA256
28632077ab5107f5925ce6cf347060312015deffd1b8472e5b06e0c133f6ff40
-
SHA512
73cd7507ad38e5958f7e82fef52282eb2793d4cd1290178f0d51c9884a27e80e81bb6af266b5984ba5dfef69edde322fecd898e305cdd7e4a57519caa7abd594
-
SSDEEP
3072:aaCAV9WB4UAZgRAg9/QHn24V5hErB4UVY+3WECnG/7NX0UV5eYka6UYV:WkWWGRC2eGB5Y+rZX/HK77
Malware Config
Targets
-
-
Target
28632077ab5107f5925ce6cf347060312015deffd1b8472e5b06e0c133f6ff40
-
Size
188KB
-
MD5
469eb4d876c8bd2093e47d2474fbc59b
-
SHA1
0ff84a77d24839137002c56e9ff60c7f92080ca8
-
SHA256
28632077ab5107f5925ce6cf347060312015deffd1b8472e5b06e0c133f6ff40
-
SHA512
73cd7507ad38e5958f7e82fef52282eb2793d4cd1290178f0d51c9884a27e80e81bb6af266b5984ba5dfef69edde322fecd898e305cdd7e4a57519caa7abd594
-
SSDEEP
3072:aaCAV9WB4UAZgRAg9/QHn24V5hErB4UVY+3WECnG/7NX0UV5eYka6UYV:WkWWGRC2eGB5Y+rZX/HK77
Score9/10-
Modifies boot configuration data using bcdedit
-
Stops running service(s)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-