Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b2.exe
-
Size
4.6MB
-
Sample
230630-n9axraah9s
-
MD5
2afcac7aaede32980c96fda99c8c8677
-
SHA1
436e83ce6882e798e5bb6d89a31913285886d3a2
-
SHA256
1cd60650fa3e560d8f7c80d4d059e669e64486bd3ca6daed52d8fdce14d0455b
-
SHA512
5ccba16f2b31f1271487729c6d502529fa329d56dc126f080481d567c37c7ed68760c808e7fb6559293c65cf9ea8deca67ba2670a42a806d7e158ce79a513907
-
SSDEEP
98304:DbcuGWyADhhIab1bvece79p6T215vhx8ovhqg4zi4RWouv60FFS7W:0dyhhIaZNeZy2Lb8Uf4G4EoE6t
Behavioral task
behavioral1
Sample
b2.exe
Resource
win7-20230621-en
Malware Config
Targets
-
-
Target
b2.exe
-
Size
4.6MB
-
MD5
2afcac7aaede32980c96fda99c8c8677
-
SHA1
436e83ce6882e798e5bb6d89a31913285886d3a2
-
SHA256
1cd60650fa3e560d8f7c80d4d059e669e64486bd3ca6daed52d8fdce14d0455b
-
SHA512
5ccba16f2b31f1271487729c6d502529fa329d56dc126f080481d567c37c7ed68760c808e7fb6559293c65cf9ea8deca67ba2670a42a806d7e158ce79a513907
-
SSDEEP
98304:DbcuGWyADhhIab1bvece79p6T215vhx8ovhqg4zi4RWouv60FFS7W:0dyhhIaZNeZy2Lb8Uf4G4EoE6t
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-