Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Phemedrone-Stealer.exe
-
Size
81KB
-
Sample
230707-fkz7cafc42
-
MD5
3e2f888ce2078969c81b1e49026115f1
-
SHA1
4c877004934f4912502ff9862a962d6ec92ab011
-
SHA256
eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f
-
SHA512
da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90
-
SSDEEP
1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd
Static task
static1
Malware Config
Targets
-
-
Target
Phemedrone-Stealer.exe
-
Size
81KB
-
MD5
3e2f888ce2078969c81b1e49026115f1
-
SHA1
4c877004934f4912502ff9862a962d6ec92ab011
-
SHA256
eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f
-
SHA512
da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90
-
SSDEEP
1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-