Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
SecuriteInfo.com.Win32.InjectorX-gen.12287.9454
-
Size
950KB
-
Sample
231012-s25jlsbc72
-
MD5
97a2f66c3caeceecd74b6c5b919367c1
-
SHA1
4d716b5153860f1b721b937ad33c1ded7f38d8e7
-
SHA256
ed57c220f4f3bae36c7116e0997505b04521d9b365879387772a5bd1edb097a5
-
SHA512
08c819d31ee8e835af71c2304e55e5cf7b057945e42491b8b17ebc06e60ed63a2f7941a9a75e273242a64b544e8268ce02c1598bddb508757596b91ad8f248a1
-
SSDEEP
12288:IXi/f3Am/sLt9cXE/NfYKDPIfGYX4PpbpFgIk5GEpv:yi3AxHcU/ZwBQbpFgI6GE
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.InjectorX-gen.12287.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.InjectorX-gen.12287.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Win32.InjectorX-gen.12287.9454
-
Size
950KB
-
MD5
97a2f66c3caeceecd74b6c5b919367c1
-
SHA1
4d716b5153860f1b721b937ad33c1ded7f38d8e7
-
SHA256
ed57c220f4f3bae36c7116e0997505b04521d9b365879387772a5bd1edb097a5
-
SHA512
08c819d31ee8e835af71c2304e55e5cf7b057945e42491b8b17ebc06e60ed63a2f7941a9a75e273242a64b544e8268ce02c1598bddb508757596b91ad8f248a1
-
SSDEEP
12288:IXi/f3Am/sLt9cXE/NfYKDPIfGYX4PpbpFgIk5GEpv:yi3AxHcU/ZwBQbpFgI6GE
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-