Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
df57c645f42fa965058034e93ba2e2b4
-
Size
17KB
-
Sample
231222-s67jrsdcf6
-
MD5
df57c645f42fa965058034e93ba2e2b4
-
SHA1
7315c2ed18d62d9da03327e2f17a4766414afd4c
-
SHA256
8e1a7e8702a8096762faaa8b628f149b9e46e0c0de00169728a4824d46f00f59
-
SHA512
0b478c91fff6a4b19c70694974053952aea22602da81e399831c1495e7889493cfbe0f8e10d4e65ad5ce58643c908c54428f6774ce5d83811137709d962dd29a
-
SSDEEP
384:BFMd7u4QucmZO2Zp+Nye8pqrmub8TyztsDN:Bu0duoKK8o8TyJc
Malware Config
Targets
-
-
Target
df57c645f42fa965058034e93ba2e2b4
-
Size
17KB
-
MD5
df57c645f42fa965058034e93ba2e2b4
-
SHA1
7315c2ed18d62d9da03327e2f17a4766414afd4c
-
SHA256
8e1a7e8702a8096762faaa8b628f149b9e46e0c0de00169728a4824d46f00f59
-
SHA512
0b478c91fff6a4b19c70694974053952aea22602da81e399831c1495e7889493cfbe0f8e10d4e65ad5ce58643c908c54428f6774ce5d83811137709d962dd29a
-
SSDEEP
384:BFMd7u4QucmZO2Zp+Nye8pqrmub8TyztsDN:Bu0duoKK8o8TyJc
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-