Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
121f406624b9995f3f19c5dcfeab6a66
-
Size
215KB
-
Sample
231224-zp7lrsegg4
-
MD5
121f406624b9995f3f19c5dcfeab6a66
-
SHA1
1327fa593578ed4b90743427aa839293e25166f7
-
SHA256
d00b8527779d3014b49708450eaed5cff5804f68944fad8c501f81c7ef83713e
-
SHA512
5d3686b098838b50e5d01d80b7594f54a82bf9f9f716d7a2e9cba9049adb39899e48d29592a73146248728e603aefd72acda70c4ad1985266f1008660cbbb9a4
-
SSDEEP
6144:LS/ECKgcKNc+fwb1/d8eLCWLz8/Gs+nFeHT:hvgIdKeOWXyGs+nOT
Malware Config
Targets
-
-
Target
121f406624b9995f3f19c5dcfeab6a66
-
Size
215KB
-
MD5
121f406624b9995f3f19c5dcfeab6a66
-
SHA1
1327fa593578ed4b90743427aa839293e25166f7
-
SHA256
d00b8527779d3014b49708450eaed5cff5804f68944fad8c501f81c7ef83713e
-
SHA512
5d3686b098838b50e5d01d80b7594f54a82bf9f9f716d7a2e9cba9049adb39899e48d29592a73146248728e603aefd72acda70c4ad1985266f1008660cbbb9a4
-
SSDEEP
6144:LS/ECKgcKNc+fwb1/d8eLCWLz8/Gs+nFeHT:hvgIdKeOWXyGs+nOT
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-