Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
infectprint1.exe
-
Size
79KB
-
Sample
240223-xawjvaeh84
-
MD5
0d4af64eb1995e67483f1ac5cde08aa3
-
SHA1
e12cb2931e67de580a8342bc478ef92e582b49ac
-
SHA256
580755838d3205f51c43877d96f43572dc53d6d8f94cf59ecdf5f5b3384f2b31
-
SHA512
7cd5124215968e3517c6c7cf1f62dcbc6c1295a1e8e200744e10375625e953eb5f376008abbe0e8524bd7a60193458123b372c342ab474a372b3f9cafe57e8fa
-
SSDEEP
1536:Oaci2JuhUKuTJk/K7t5bpQrnPheGIFZXDF5TBjg:6vnb+r2Ny
Static task
static1
Behavioral task
behavioral1
Sample
infectprint1.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
infectprint1.exe
Resource
win10-20240221-en
Behavioral task
behavioral3
Sample
infectprint1.exe
Resource
win10v2004-20240221-en
Behavioral task
behavioral4
Sample
infectprint1.exe
Resource
win11-20240221-en
Malware Config
Extracted
njrat
v4.0
i-miss-u
2.tcp.eu.ngrok.io:18876
Windows
-
reg_key
Windows
-
splitter
|-F-|
Targets
-
-
Target
infectprint1.exe
-
Size
79KB
-
MD5
0d4af64eb1995e67483f1ac5cde08aa3
-
SHA1
e12cb2931e67de580a8342bc478ef92e582b49ac
-
SHA256
580755838d3205f51c43877d96f43572dc53d6d8f94cf59ecdf5f5b3384f2b31
-
SHA512
7cd5124215968e3517c6c7cf1f62dcbc6c1295a1e8e200744e10375625e953eb5f376008abbe0e8524bd7a60193458123b372c342ab474a372b3f9cafe57e8fa
-
SSDEEP
1536:Oaci2JuhUKuTJk/K7t5bpQrnPheGIFZXDF5TBjg:6vnb+r2Ny
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-