Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1b62bebbf3151197d8124e6e2f9a8802ccc761c3836316438a0466890b9fe6d2
-
Size
3.4MB
-
Sample
240223-w7m4asfg5t
-
MD5
1d329f7e63a0e0da93d4dc2c5713ca95
-
SHA1
4b469d8ee6769fd77282c1c893eadeaf7e39eb93
-
SHA256
1b62bebbf3151197d8124e6e2f9a8802ccc761c3836316438a0466890b9fe6d2
-
SHA512
28b2fd78ef0555de1efc2d3fbf6b8651fef8132f36947da66762b785b2f28f3244ab2b9e0f2159a1449982bf7835573433e3ebf30e2c2a41812344f728aea2c5
-
SSDEEP
49152:vEjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWs:vEjlmQbfgSgwvSnN4iVJuS0xJdzYUqt
Malware Config
Extracted
gozi
Targets
-
-
Target
1b62bebbf3151197d8124e6e2f9a8802ccc761c3836316438a0466890b9fe6d2
-
Size
3.4MB
-
MD5
1d329f7e63a0e0da93d4dc2c5713ca95
-
SHA1
4b469d8ee6769fd77282c1c893eadeaf7e39eb93
-
SHA256
1b62bebbf3151197d8124e6e2f9a8802ccc761c3836316438a0466890b9fe6d2
-
SHA512
28b2fd78ef0555de1efc2d3fbf6b8651fef8132f36947da66762b785b2f28f3244ab2b9e0f2159a1449982bf7835573433e3ebf30e2c2a41812344f728aea2c5
-
SSDEEP
49152:vEjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWs:vEjlmQbfgSgwvSnN4iVJuS0xJdzYUqt
Score7/10-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-