Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b81b1fc7669f866aec8cdc411f1a008f
-
Size
176KB
-
Sample
240306-y7t8qahe9s
-
MD5
b81b1fc7669f866aec8cdc411f1a008f
-
SHA1
b70ed913b06ade377bfae616c45111b9dee24073
-
SHA256
5fd8ec88ee573613440041bed9eaca56c74fac47e620e9b12f6c31be1a500682
-
SHA512
6dace3c60aa6504da0ced5f2c81f9ce0faeb9505dadb2993d44f714f0846692642fcbbfe70fa97b60fd573bff54630a81a93dab198e0fdb9725e94f9460e5448
-
SSDEEP
3072:cFOftfiq8/e5PBZ5CmuaveUyl2jEExRcAes:cFOFfz9BZ5CmuamUA2YExR
Malware Config
Targets
-
-
Target
b81b1fc7669f866aec8cdc411f1a008f
-
Size
176KB
-
MD5
b81b1fc7669f866aec8cdc411f1a008f
-
SHA1
b70ed913b06ade377bfae616c45111b9dee24073
-
SHA256
5fd8ec88ee573613440041bed9eaca56c74fac47e620e9b12f6c31be1a500682
-
SHA512
6dace3c60aa6504da0ced5f2c81f9ce0faeb9505dadb2993d44f714f0846692642fcbbfe70fa97b60fd573bff54630a81a93dab198e0fdb9725e94f9460e5448
-
SSDEEP
3072:cFOftfiq8/e5PBZ5CmuaveUyl2jEExRcAes:cFOFfz9BZ5CmuamUA2YExR
Score8/10-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-