Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ID-ArcGZBSSQUXFSHYBIHtzjjo.zip
-
Size
2.8MB
-
Sample
231103-26hebada64
-
MD5
a87363df57417e5469c7d4b90be38484
-
SHA1
75051cd7d5d2e05cd2c4a22b87af415614dde9ea
-
SHA256
673f2dacb34091ade61916a1cc31c9976fa106d2db92eb270c06bbdfdce1e538
-
SHA512
c12329fb564fb61fa99fa6ca524abc6bf8ae11bdc34f7b3bba4ff7a2c87a9fbde3b40b8a36c9b2a7caed07fca1e334491eb895acc2639d9f4013495aa7ff1c56
-
SSDEEP
49152:yjLQRvtDuoM1hMtus1ub3Y0ccVZVabxrU3q+V2XHl/2DIcZU6vbytlNCFrVZRGjB:ULQRvtvIhQAbI0cyGS/Ql/2U4U6vOAFU
Malware Config
Targets
-
-
Target
F91ANFac_turaMTHEIARMRSqoxgxRefXNVZZQGJEUukoan.msi
-
Size
8.6MB
-
MD5
899f664925a69b957335b4bb00ff9142
-
SHA1
1dd30f02ff61904bcfea931f21f8b008d21da670
-
SHA256
c3c9bfb8cb54c481641c9be79295e19912c78b5025a451df9e34b4fbd0e8e0f4
-
SHA512
4b3bf0fddec240bcbff0c3663f4fc3fcac352317613cb224a0f9a0bac0357c1c4f875b45352eb522ea9d8cea4d6fc720b009e3760a94fe722d229d6563fd1000
-
SSDEEP
49152:6cfofeSXa3HBb8IFnfGXK+ihN9SWF3i7q7tWp2yosVSYtCTpIec6zyxww1nx3VWC:NSX8ppvDKy547IA0
Score7/10-
Loads dropped DLL
-
Blocklisted process makes network request
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
-
-
Target
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~RMUUDIVFUH.xml
-
Size
16KB
-
MD5
8e27998497215aa04caf5470e6cb7093
-
SHA1
3d30d2d33b9df4656d4d0a58b00b0c8f3a6f4f75
-
SHA256
0604388f107d1ed9abbb13912e5cdc2f9a2da8d0e528fbb4546c23b2f08c6f15
-
SHA512
7ff947b92970f7af8862017ae6cc2e6acf6efa1c1e2ab6d1ad6e1ede7aa3f7c496f44792660dbd284b507598116f290940df431abb65baa27591a08177facdf8
-
SSDEEP
192:nOoZ9Nyby2sE9jBF6IYiYF84+noPOJB3xZndj73oqp4f2br5hRJz:n59Nyb8E9VF6IYiTPxxZdnoqeChRd
Score1/10 -