Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
045f4cea4f863d9def6967fe35303066
-
Size
6.4MB
-
Sample
231229-z81ybsgda3
-
MD5
045f4cea4f863d9def6967fe35303066
-
SHA1
e40b4393ac099688bee151c475c71a4354c69654
-
SHA256
7f172d780a290e00ba180bab8e5fcec4d1a8f6d8512310794d7e5e9cd45e829d
-
SHA512
4779aa92792799d9e5dd6cce3a05c5f06959cdc8213e2fb5c5127733ff1d5c9108f7a13e926ea36f1661bda133b574ac484c5a3bfeed18fdf16f17d03509788f
-
SSDEEP
98304:Vi3w/4GrQBeQZ1P/by87heRw6+vllYmTDv7GQ6pwoTxFI:VCw/+eMy8te2dlYEDGQT6
Static task
static1
Behavioral task
behavioral1
Sample
045f4cea4f863d9def6967fe35303066.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
045f4cea4f863d9def6967fe35303066
-
Size
6.4MB
-
MD5
045f4cea4f863d9def6967fe35303066
-
SHA1
e40b4393ac099688bee151c475c71a4354c69654
-
SHA256
7f172d780a290e00ba180bab8e5fcec4d1a8f6d8512310794d7e5e9cd45e829d
-
SHA512
4779aa92792799d9e5dd6cce3a05c5f06959cdc8213e2fb5c5127733ff1d5c9108f7a13e926ea36f1661bda133b574ac484c5a3bfeed18fdf16f17d03509788f
-
SSDEEP
98304:Vi3w/4GrQBeQZ1P/by87heRw6+vllYmTDv7GQ6pwoTxFI:VCw/+eMy8te2dlYEDGQT6
-
Detect ZGRat V1
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Suspicious use of SetThreadContext
-