Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
42048a61da76b88c075b9752dfed4359
-
Size
68KB
-
Sample
240104-1yw23adda9
-
MD5
42048a61da76b88c075b9752dfed4359
-
SHA1
8cbae9276790eb0e9ecc619dfc2a53a6da3ed374
-
SHA256
768dd6ae63b5b01e5b7f0c3d52433e483c1d36e2a9645db30bba1a12d56130dc
-
SHA512
632c689cce04aff80673d01e2369413cfaed287fc84bc9cdff6348b2149629375b8b00d2cac297a0706ed5d614c685e907ae5511d2bce1b8965544583eb42242
-
SSDEEP
768:2cqliTduSTAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:NqIxTTAcqOK3qowgnt1d
Malware Config
Targets
-
-
Target
42048a61da76b88c075b9752dfed4359
-
Size
68KB
-
MD5
42048a61da76b88c075b9752dfed4359
-
SHA1
8cbae9276790eb0e9ecc619dfc2a53a6da3ed374
-
SHA256
768dd6ae63b5b01e5b7f0c3d52433e483c1d36e2a9645db30bba1a12d56130dc
-
SHA512
632c689cce04aff80673d01e2369413cfaed287fc84bc9cdff6348b2149629375b8b00d2cac297a0706ed5d614c685e907ae5511d2bce1b8965544583eb42242
-
SSDEEP
768:2cqliTduSTAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:NqIxTTAcqOK3qowgnt1d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-