Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
FiveM.zip
-
Size
2.2MB
-
Sample
230529-rpxgsscb89
-
MD5
6df96b6a21311b9d7eb32e79c598cd16
-
SHA1
a366a754f2574327b41668b07d4218d9d5648c9e
-
SHA256
3be30b01b3113cb4c5a31329f20adbcc4b576081db2032fa08ebe8849f36d0b4
-
SHA512
7b6d8a04af96d7ebdf80bbd555ab72feb8fcc5051f94b52a8f4dfd08af49d5fd8adb2087265993e3a7b6efa94748bc95f36a52f80051922aac46ab7bc95f8fd8
-
SSDEEP
49152:bQaNFwgHzpImqyGs0kN0scY0yb/w0diJXV3OoTWUt7PSQ6fgDM:bZNinmqyI2NiJXV3OKLVSQwgDM
Static task
static1
Behavioral task
behavioral1
Sample
FiveM.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
FiveM.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
FiveM.exe
-
Size
4.9MB
-
MD5
4a036dffd4eba55a9a5bdebd5cfa01b5
-
SHA1
f3e232cd319f2dc310fd2816f388a87db354ae04
-
SHA256
223789990716c446bd1175f4bc74ad01393d90014b1581b23c8b73bb265df78f
-
SHA512
eab762da142332f0ac7bf75793ceb839c2607e8689090f44d832f7583502cb9964024b70a64d56cf8cddb2a0c7079aaf5dc903ab33657c6dfa2dc731a123879a
-
SSDEEP
49152:pOjPWgEPD9u3+aM9toyPnDe8VjoitsVyNKUVOjhxwkhHC0u0iVJtfSJQiUzvgaQp:1Dlri8loPVlMRFSn/5rFXjPSm+m
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-