Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7da7a999a1efb6591013734ec3464f23aca7cd9fa896efdb0e82f894dc6a151a

  • Size

    17.1MB

  • Sample

    231220-cxjhksgdgp

  • MD5

    0f32d26b2c84430ad6c1f05e08612815

  • SHA1

    4ed10a2045ce34d9639b5bc78ed93b5ac60c9612

  • SHA256

    7da7a999a1efb6591013734ec3464f23aca7cd9fa896efdb0e82f894dc6a151a

  • SHA512

    6caaf0e7246904398752888d371c7db5d3562c7413bf285fe5cd6e0d521e2d64fe9b7d9688de2733eef1bf40ac56cd1202101bfd744bcee590d6e12fa6768f13

  • SSDEEP

    393216:bwXc7nKYvHRzHyzhtotpOmucAxOhjSZ23+:8M7nlHRzHyDoLNAxOhe

Malware Config

Targets

    • Target

      7da7a999a1efb6591013734ec3464f23aca7cd9fa896efdb0e82f894dc6a151a

    • Size

      17.1MB

    • MD5

      0f32d26b2c84430ad6c1f05e08612815

    • SHA1

      4ed10a2045ce34d9639b5bc78ed93b5ac60c9612

    • SHA256

      7da7a999a1efb6591013734ec3464f23aca7cd9fa896efdb0e82f894dc6a151a

    • SHA512

      6caaf0e7246904398752888d371c7db5d3562c7413bf285fe5cd6e0d521e2d64fe9b7d9688de2733eef1bf40ac56cd1202101bfd744bcee590d6e12fa6768f13

    • SSDEEP

      393216:bwXc7nKYvHRzHyzhtotpOmucAxOhjSZ23+:8M7nlHRzHyDoLNAxOhe

    • BadBazaar

      BadBazaar is an Android spyware used by GREF APT group.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Acquires the wake lock

    • Reads information about phone network operator.

MITRE ATT&CK Matrix

Tasks