Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

01a6c61bfa...2f0.js

windows7-x64

10

01a6c61bfa...2f0.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    01a6c61bfaf8b588ddcc9bff1f8122f0

  • Size

    105KB

  • Sample

    231224-r1e2wsgecl

  • MD5

    01a6c61bfaf8b588ddcc9bff1f8122f0

  • SHA1

    7b096f834e5438f1dba36e1f80588120991a5608

  • SHA256

    7113ee92ac34133d41abaffdd2545450df151d83030d49117333e8b939419f17

  • SHA512

    5e805ad3e0960b22303fb2fa51936c877c6cfb45edc3aa92696af5cf66f951cccad7f1b0dacb20f50bff8ee3674003047a6a231b3c3a8d56c6a4c60bef5fa904

  • SSDEEP

    3072:59Ry98guHVBqqg2bcruzUHmLKeMMU7GwbWBPwVGWl9SZ8kV8Gd5bzIvt/4g5eaXA:59Ry9RuXqW4SzUHmLKeMMU7GwWBPwVGh

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://smart-integrator.hr/pornhub.php

Targets

    • Target

      01a6c61bfaf8b588ddcc9bff1f8122f0

    • Size

      105KB

    • MD5

      01a6c61bfaf8b588ddcc9bff1f8122f0

    • SHA1

      7b096f834e5438f1dba36e1f80588120991a5608

    • SHA256

      7113ee92ac34133d41abaffdd2545450df151d83030d49117333e8b939419f17

    • SHA512

      5e805ad3e0960b22303fb2fa51936c877c6cfb45edc3aa92696af5cf66f951cccad7f1b0dacb20f50bff8ee3674003047a6a231b3c3a8d56c6a4c60bef5fa904

    • SSDEEP

      3072:59Ry98guHVBqqg2bcruzUHmLKeMMU7GwbWBPwVGWl9SZ8kV8Gd5bzIvt/4g5eaXA:59Ry9RuXqW4SzUHmLKeMMU7GwWBPwVGh

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks