Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

45eba6f313...4c6.js

windows7-x64

10

45eba6f313...4c6.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45eba6f313f6042b4f0d026f2454c4c6.unknown

  • Size

    72KB

  • Sample

    240106-l5g46adcam

  • MD5

    45eba6f313f6042b4f0d026f2454c4c6

  • SHA1

    f70c24851d9c0588b84906f719de779294622a1f

  • SHA256

    a151649d286219f797af47de4299140d797c14ba0a733042b9c252c2da8e6684

  • SHA512

    ab5e44e8eea52349d251b5e5d7b2b61723fff4889cc4a64cf09019762d93f89d8c2a0c7cbd9ae704b9c6cd063dec8f3d14adff3765dd024ecb2a77282364a3e2

  • SSDEEP

    1536:hSvVfD5Xm9Ry98guHVBqqg2bcruayUHmLKeZaMU7GwbWBPwVGWl9SZ8kV8Gp/5bs:hStfDs9Ry98guHVBqqg2bcruzUHmLKeg

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://smart-integrator.hr/pornhub.php

Targets

    • Target

      45eba6f313f6042b4f0d026f2454c4c6.unknown

    • Size

      72KB

    • MD5

      45eba6f313f6042b4f0d026f2454c4c6

    • SHA1

      f70c24851d9c0588b84906f719de779294622a1f

    • SHA256

      a151649d286219f797af47de4299140d797c14ba0a733042b9c252c2da8e6684

    • SHA512

      ab5e44e8eea52349d251b5e5d7b2b61723fff4889cc4a64cf09019762d93f89d8c2a0c7cbd9ae704b9c6cd063dec8f3d14adff3765dd024ecb2a77282364a3e2

    • SSDEEP

      1536:hSvVfD5Xm9Ry98guHVBqqg2bcruayUHmLKeZaMU7GwbWBPwVGWl9SZ8kV8Gp/5bs:hStfDs9Ry98guHVBqqg2bcruzUHmLKeg

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks