Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cheats.exe
-
Size
17.7MB
-
Sample
231212-xmv4vaabhm
-
MD5
6a59616459be7f04581c9d3dde8f546a
-
SHA1
d8f3d07d609a3e12325e3b67719c255fa19f2ed2
-
SHA256
8212b4fbb003c334820c3ba836aec608dc7bdb8b595469c1abb18b7dc4ff1f70
-
SHA512
851731d1caf40bca5b994cfd8946ce25f03a5c322ae2c4bdddf126c7b7acd2e0502c00450bc8954393236da6b92696e791b4e894ba84a310111e1320d15da8cc
-
SSDEEP
393216:9qPnLFXlrVgQpDOETgsvfGzMgwHKvEMjkQ2Leq:EPLFXN6QoEJBDvQUn
Malware Config
Targets
-
-
Target
cheats.exe
-
Size
17.7MB
-
MD5
6a59616459be7f04581c9d3dde8f546a
-
SHA1
d8f3d07d609a3e12325e3b67719c255fa19f2ed2
-
SHA256
8212b4fbb003c334820c3ba836aec608dc7bdb8b595469c1abb18b7dc4ff1f70
-
SHA512
851731d1caf40bca5b994cfd8946ce25f03a5c322ae2c4bdddf126c7b7acd2e0502c00450bc8954393236da6b92696e791b4e894ba84a310111e1320d15da8cc
-
SSDEEP
393216:9qPnLFXlrVgQpDOETgsvfGzMgwHKvEMjkQ2Leq:EPLFXN6QoEJBDvQUn
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-