Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c
-
Size
3.6MB
-
Sample
240206-1jb4caagdq
-
MD5
05eb4360be1504d67dd58dfd2e57e96d
-
SHA1
9c148695e0bc6d4294435537ccf022b2bf6266e1
-
SHA256
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c
-
SHA512
75491c1ac3864ffa6868f3dc026fa6ad609be1fa02e632acecb90d61a223db4ce4b3e26c7056188794e2873d44ef4a408fe4f529f8b273b122ed362847035df7
-
SSDEEP
49152:3EjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWW:3EjlmQbfgSgwvSnN4iVJu10xltKcgqr
Behavioral task
behavioral1
Sample
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
gozi
Targets
-
-
Target
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c
-
Size
3.6MB
-
MD5
05eb4360be1504d67dd58dfd2e57e96d
-
SHA1
9c148695e0bc6d4294435537ccf022b2bf6266e1
-
SHA256
6fd54d523402e17498c3e8398cd5150a223c1e813bb9908ed28c0d815747d82c
-
SHA512
75491c1ac3864ffa6868f3dc026fa6ad609be1fa02e632acecb90d61a223db4ce4b3e26c7056188794e2873d44ef4a408fe4f529f8b273b122ed362847035df7
-
SSDEEP
49152:3EjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWW:3EjlmQbfgSgwvSnN4iVJu10xltKcgqr
Score7/10-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-