Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Shaderium1.4.0.rar
-
Size
67.1MB
-
Sample
240225-l9r5xsab3s
-
MD5
3ac926cd05476cfdf19382f233296197
-
SHA1
2a5b724ba95ac78d27048e46af90a5ba36e829c8
-
SHA256
eac0f3d162b8aa13eb8095fb3c871f6a787bc287f7afb9eb49993a3396c2a31f
-
SHA512
2ab0704fe34d7ebb38e54c16e89900c88fae07ea948a9f11a6f0fe7f0ce6bccd818da94dfba739073ecbae91a4a1c4085b536424953f8e8a73e188d5322c1eb2
-
SSDEEP
1572864:LrziNx5qJRvEC8AA7qIsklM6uECzJRFnc35lkFcF7vz1PzL:Ox5qJRvtA7vM6HwJRFn8mqzL
Static task
static1
Malware Config
Targets
-
-
Target
Shaderium1.4.0.rar
-
Size
67.1MB
-
MD5
3ac926cd05476cfdf19382f233296197
-
SHA1
2a5b724ba95ac78d27048e46af90a5ba36e829c8
-
SHA256
eac0f3d162b8aa13eb8095fb3c871f6a787bc287f7afb9eb49993a3396c2a31f
-
SHA512
2ab0704fe34d7ebb38e54c16e89900c88fae07ea948a9f11a6f0fe7f0ce6bccd818da94dfba739073ecbae91a4a1c4085b536424953f8e8a73e188d5322c1eb2
-
SSDEEP
1572864:LrziNx5qJRvEC8AA7qIsklM6uECzJRFnc35lkFcF7vz1PzL:Ox5qJRvtA7vM6HwJRFn8mqzL
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
An obfuscated cmd.exe command-line is typically used to evade detection.
-