Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2c4b25d7c963e79c7b32f1113cffc266c806329f46a5fc7b7d6537c17d360172
-
Size
140KB
-
Sample
240319-fvt33sae33
-
MD5
6940b461e331d93e5408d4ad13cc1c47
-
SHA1
97e9bbbda2a5b4d8de10a5832b1bb2bfaeaafdc3
-
SHA256
2c4b25d7c963e79c7b32f1113cffc266c806329f46a5fc7b7d6537c17d360172
-
SHA512
60e7864655bf0ed894bccd5bae9077fab37d4345cc9f1c670f0d7b0ef12ea4fbd3a7b4212c634829bc45cd1eacb224177c5c977cad09227f0ba4ec417a542c17
-
SSDEEP
3072:cB3u86LSsfXUPKMX1xLZsLwXloSx60ogKn1uqRW:cBSLSsfXUPKMX1xLZsLuoE60ogKn1u
Malware Config
Targets
-
-
Target
2c4b25d7c963e79c7b32f1113cffc266c806329f46a5fc7b7d6537c17d360172
-
Size
140KB
-
MD5
6940b461e331d93e5408d4ad13cc1c47
-
SHA1
97e9bbbda2a5b4d8de10a5832b1bb2bfaeaafdc3
-
SHA256
2c4b25d7c963e79c7b32f1113cffc266c806329f46a5fc7b7d6537c17d360172
-
SHA512
60e7864655bf0ed894bccd5bae9077fab37d4345cc9f1c670f0d7b0ef12ea4fbd3a7b4212c634829bc45cd1eacb224177c5c977cad09227f0ba4ec417a542c17
-
SSDEEP
3072:cB3u86LSsfXUPKMX1xLZsLwXloSx60ogKn1uqRW:cBSLSsfXUPKMX1xLZsLuoE60ogKn1u
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-