Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
SecuriteInfo.com.Trojan.MSIL.Crypt.19699.11292
-
Size
681KB
-
Sample
240129-r5gfhsdfcn
-
MD5
2c6646286a2e2682229fa060c1d16374
-
SHA1
4b78d96b33e9da1a3f819d04945a6e20e26ff955
-
SHA256
01f69aee0b89173efd74b9ab64b4f6b9a2f4810ec1778983d71ed4c8ed5824b7
-
SHA512
f37fa9350e713a25c51d752870d63341c1486e01de5b8aff234ab294429443f072dbd41b6b1ffd9389cea7e70e62cf691a5a31ed5c47fe48bcfca881ae970e3b
-
SSDEEP
12288:+Gk0OTKGZrQQE97YCdjhrZiVdO7KOviMIgtCG2PdgHodcp7iJ2gfpZlNK2dmbVCt:6VDzCdRZ7jggtCG2Pkn
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.MSIL.Crypt.19699.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.MSIL.Crypt.19699.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.MSIL.Crypt.19699.11292
-
Size
681KB
-
MD5
2c6646286a2e2682229fa060c1d16374
-
SHA1
4b78d96b33e9da1a3f819d04945a6e20e26ff955
-
SHA256
01f69aee0b89173efd74b9ab64b4f6b9a2f4810ec1778983d71ed4c8ed5824b7
-
SHA512
f37fa9350e713a25c51d752870d63341c1486e01de5b8aff234ab294429443f072dbd41b6b1ffd9389cea7e70e62cf691a5a31ed5c47fe48bcfca881ae970e3b
-
SSDEEP
12288:+Gk0OTKGZrQQE97YCdjhrZiVdO7KOviMIgtCG2PdgHodcp7iJ2gfpZlNK2dmbVCt:6VDzCdRZ7jggtCG2Pkn
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Suspicious use of SetThreadContext
-