Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c90a197663b620754a99243f25e95f15
-
Size
506KB
-
Sample
240314-tkq6bsaf39
-
MD5
c90a197663b620754a99243f25e95f15
-
SHA1
0d1ad2ad2cba531aae10c324cce80a9a6c44e784
-
SHA256
eed1a1ef8715a250752ba500338cec05ccf765a91df7889e322d0e9c7301f262
-
SHA512
979e86615d0ebb129876b3b1170863625b0e8d0b10b2bc3cd41d2c9f6abf824215268655efbfb3b08d120f7b8569c928ff012285170da7f660b56a0c88125ead
-
SSDEEP
12288:QzGX0PJm5yf2w1oJHryAymIPMJb9/MddvoDSJguCj+cLq3olCK6hb27GV14:UGkPJm5bw1krBysFMddRXAN6hlV14
Static task
static1
Behavioral task
behavioral1
Sample
c90a197663b620754a99243f25e95f15.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
c90a197663b620754a99243f25e95f15.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
c90a197663b620754a99243f25e95f15
-
Size
506KB
-
MD5
c90a197663b620754a99243f25e95f15
-
SHA1
0d1ad2ad2cba531aae10c324cce80a9a6c44e784
-
SHA256
eed1a1ef8715a250752ba500338cec05ccf765a91df7889e322d0e9c7301f262
-
SHA512
979e86615d0ebb129876b3b1170863625b0e8d0b10b2bc3cd41d2c9f6abf824215268655efbfb3b08d120f7b8569c928ff012285170da7f660b56a0c88125ead
-
SSDEEP
12288:QzGX0PJm5yf2w1oJHryAymIPMJb9/MddvoDSJguCj+cLq3olCK6hb27GV14:UGkPJm5bw1krBysFMddRXAN6hlV14
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-