Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
TEMPEST-Setup-3.0.5.exe
-
Size
86.3MB
-
Sample
230614-qh2bqshe9s
-
MD5
d05924608bf83ed8d0aa4a3f6284cf93
-
SHA1
b43ff0609c99eb9e95839fcd46e7f4e8d50072a4
-
SHA256
f689791a5c1c74cdcf212faa347e8d3f52b22a41b74371bc8c458827af4b4a9d
-
SHA512
2545676c48fe060f05cb6c997797ed088a17080c60e1ad4abeb0d0e636acdfe1ef200e30c1b454829771161acfda2c5c19faa243782555351328d3e0325fe4d2
-
SSDEEP
1572864:V6+IiPxE13n42BKUvHCG6sY+vWjd6w7Fpu/1HRUxbCe+z:5E1I2DvzYISoN7kbO
Malware Config
Targets
-
-
Target
TEMPEST-Setup-3.0.5.exe
-
Size
86.3MB
-
MD5
d05924608bf83ed8d0aa4a3f6284cf93
-
SHA1
b43ff0609c99eb9e95839fcd46e7f4e8d50072a4
-
SHA256
f689791a5c1c74cdcf212faa347e8d3f52b22a41b74371bc8c458827af4b4a9d
-
SHA512
2545676c48fe060f05cb6c997797ed088a17080c60e1ad4abeb0d0e636acdfe1ef200e30c1b454829771161acfda2c5c19faa243782555351328d3e0325fe4d2
-
SSDEEP
1572864:V6+IiPxE13n42BKUvHCG6sY+vWjd6w7Fpu/1HRUxbCe+z:5E1I2DvzYISoN7kbO
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-