Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ccbb5355b566c47ea3cc7acfd4b9fc8b
-
Size
276KB
-
Sample
240316-blzjzshh68
-
MD5
ccbb5355b566c47ea3cc7acfd4b9fc8b
-
SHA1
0490fc88853a15155b599e4d38c96bc25c57f92d
-
SHA256
cb3557a20c6c5dd7bd87a2e4082b8d9c409ab11d22b13fcc3d20684fef6f3e19
-
SHA512
fc227b1a7868a4e141c5af8dc5943e28103f7b22bd42dc7e40f092e10e203aae87e5077a9fc4756a56f13842a10df3db38edc85300a00a62b3134c0342cefaa0
-
SSDEEP
3072:v15YY60+0cJB/JO08G/u15G15S15S15YY60+0cJB/JO08G/M:t5G5BHM5U54545G5BHM
Malware Config
Targets
-
-
Target
ccbb5355b566c47ea3cc7acfd4b9fc8b
-
Size
276KB
-
MD5
ccbb5355b566c47ea3cc7acfd4b9fc8b
-
SHA1
0490fc88853a15155b599e4d38c96bc25c57f92d
-
SHA256
cb3557a20c6c5dd7bd87a2e4082b8d9c409ab11d22b13fcc3d20684fef6f3e19
-
SHA512
fc227b1a7868a4e141c5af8dc5943e28103f7b22bd42dc7e40f092e10e203aae87e5077a9fc4756a56f13842a10df3db38edc85300a00a62b3134c0342cefaa0
-
SSDEEP
3072:v15YY60+0cJB/JO08G/u15G15S15S15YY60+0cJB/JO08G/M:t5G5BHM5U54545G5BHM
Score8/10-
Drops file in Drivers directory
-
Manipulates Digital Signatures
Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory
-