Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b50bf2fd5588ab8d8a34698c6834551f5767956a1b4f643f7e63c8cf6f7b8816.zip.zip
-
Size
55.0MB
-
Sample
231107-q2lemafa4s
-
MD5
a507872e3494996aec069aa26a468022
-
SHA1
db9885759adc10ec3d01099816dd7633f431cf82
-
SHA256
3639584dfe79e00cf321e9eaa68b68fbc18ea44dd8ed0bb1f4a10f86f8abed8a
-
SHA512
cd6c367d5d2cb0b6ff65bcd1cf12ebff0652e8722dcc8b769c4ff144a959a312f5aaefdff0b279e9efbf9c30182a3c5cc5b9142578653c9f64ec2c1bf69e19a6
-
SSDEEP
1572864:J0w5cQum2MLYTGfAxTWXZT4ZE3ifnx+dE8:J0w5cQuPjiSTWZmKB
Malware Config
Targets
-
-
Target
vc-redist_2005-x64.exe
-
Size
3.0MB
-
MD5
e231fbcce2c2cb16dcc299d36c734df3
-
SHA1
f4d74643a0e117ea80b2c7ebcd908a6dd26aa9ea
-
SHA256
4487570bd86e2e1aac29db2a1d0a91eb63361fcaac570808eb327cd4e0e2240d
-
SHA512
4a3d27791f72d6feb38e55fe06b8a08f99bac315415d11e32cb6895cdd6f7145d46d070cd94ac879c4b87ff2a025b3781e662b32848ff2dbdd350cb46fe9177a
-
SSDEEP
49152:or67+stI6RWGTAdyvlADUrpTmcOgohwJpEM5grO3oc1OXZViFeRyDErkLUMHzkRT:eM9l8pUr9m30L5grOQXZKAsErkbQRT
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
-
-
Target
vc-redist_2008-x64.exe
-
Size
5.0MB
-
MD5
472c10efa75a30deb2a15ec8b777227b
-
SHA1
ce8ff6572e86b0bba39d88fa3a6d56b59100613d
-
SHA256
c5e273a4a16ab4d5471e91c7477719a2f45ddadb76c7f98a38fa5074a6838654
-
SHA512
819138a1620d2151f41bfb27fb68d6dba28eb8f337921f46078296ffdd0989e7f378f2090a5d110197f1c357297b761026e199cb96f64eb70e94fcc95f10afcf
-
SSDEEP
98304:i8I8/pCVmdbx2rU/xFnTBU8UeNeagEXtIgvjyGFDdo85qyKYr5NM62dNKViClWP1:iAvx2rw5Th8XeNyGtW0DJr5uDdQdWPe4
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
vc-redist_2010-x64.exe
-
Size
9.8MB
-
MD5
02a945866cd1b13e2375c024f0e18301
-
SHA1
8691972f0a5bf919701ac3b80fb693fc715420c2
-
SHA256
f3b7a76d84d23f91957aa18456a14b4e90609e4ce8194c5653384ed38dada6f3
-
SHA512
3af3dcaad4fc9651dce75c75a85bca0b15782a190f0fbb4ae21a6182cbc2f78138aa8ff26b350efef302f95c74b1808b2436aa199d43a5ee17fd0796a79c405b
-
SSDEEP
196608:59A3D5MBD0vwqMKgL29M2JWMWiKV/nPlnqIaAAVINqsAsbPnpCxmz7dUD:43D5MBwZMd0b4oSQ7VSrAs1gEdUD
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
vc-redist_2012-x64.exe
-
Size
6.9MB
-
MD5
3c03562b5af9ed347614053d459d7778
-
SHA1
1a5d93dddbc431ab27b1da711cd3370891542797
-
SHA256
681be3e5ba9fd3da02c09d7e565adfa078640ed66a0d58583efad2c1e3cc4064
-
SHA512
6c2f4eeb38705c2dafc4d75d8de0036a0aed197f83e9cb261d255fe26e4391f24b0b156e9019c739dd99057041c2bb80f9ab80f56869bc1e01f0469a76f24f75
-
SSDEEP
98304:vRWKtOl5CCGomEBkHUBmExJrIUg32t9RRyvo7VnOcyP24Vc35re94tb0eYbY1poo:v3tO3CCT/hBxtVtyUVnmSprzVIY7QKAk
Score7/10-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
vc-redist_2013-x64.exe
-
Size
6.9MB
-
MD5
49b1164f8e95ec6409ea83cdb352d8da
-
SHA1
1194e6bf4153fa88f20b2a70ac15bc359ada4ee2
-
SHA256
a4bba7701e355ae29c403431f871a537897c363e215cafe706615e270984f17c
-
SHA512
29b65e45ce5233f5ad480673752529026f59a760466a1026bb92fc78d1ccc82396ecb8f07b0e49c9b2315dbef976cb417273c77f4209475036775fe687dd2d60
-
SSDEEP
196608:bPwMcp4zKAKpCPhD5nsF5GBAiSG5VtJFeHi:0McAWKJsF5vib5VtTeC
Score7/10-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
vc-redist_2015-2022-x64.exe
-
Size
24.2MB
-
MD5
077f0abdc2a3881d5c6c774af821f787
-
SHA1
c483f66c48ba83e99c764d957729789317b09c6b
-
SHA256
917c37d816488545b70affd77d6e486e4dd27e2ece63f6bbaaf486b178b2b888
-
SHA512
70a888d5891efd2a48d33c22f35e9178bd113032162dc5a170e7c56f2d592e3c59a08904b9f1b54450c80f8863bda746e431b396e4c1624b91ff15dd701bd939
-
SSDEEP
786432:Rip+Ty2SfUfnRLL96rFyZrimbJdCnoJpOhX+dx:Mp+Ty2SfWnFJ6rQVdKhX+dx
Score4/10 -