Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
https://vgq8tzjy.r.us-east-1.awstrack.me/L0/https:%2F%2Frts.ccmp.eu%2Frts%2Fgo2.aspx%3Fh=1247107%26tp=i-1NGB-Fb-EeO-1jnRvw-1c-PwWY-1c-1j0tsE-l8HoOHKMRi-iIE2M%26x=jewelryprofessionalappraisals.com%2Fenergy%2F2a2d6b8d94315730c19aa6cbafad408a%2FEtgOlM%2Fcm9iZXJ0LmRpY2tzb25AdXRhaC5lZHU=/1/0100018e7753538c-6c2b964c-150d-4333-b952-32fbb6befe5b-000000/UhhAiyuT7RjyU_Df2-geS7CsA8c=366
-
Sample
240325-zn3anahd24
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://vgq8tzjy.r.us-east-1.awstrack.me/L0/https:%2F%2Frts.ccmp.eu%2Frts%2Fgo2.aspx%3Fh=1247107%26tp=i-1NGB-Fb-EeO-1jnRvw-1c-PwWY-1c-1j0tsE-l8HoOHKMRi-iIE2M%26x=jewelryprofessionalappraisals.com%2Fenergy%2F2a2d6b8d94315730c19aa6cbafad408a%2FEtgOlM%2Fcm9iZXJ0LmRpY2tzb25AdXRhaC5lZHU=/1/0100018e7753538c-6c2b964c-150d-4333-b952-32fbb6befe5b-000000/UhhAiyuT7RjyU_Df2-geS7CsA8c=366
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
https://vgq8tzjy.r.us-east-1.awstrack.me/L0/https:%2F%2Frts.ccmp.eu%2Frts%2Fgo2.aspx%3Fh=1247107%26tp=i-1NGB-Fb-EeO-1jnRvw-1c-PwWY-1c-1j0tsE-l8HoOHKMRi-iIE2M%26x=jewelryprofessionalappraisals.com%2Fenergy%2F2a2d6b8d94315730c19aa6cbafad408a%2FEtgOlM%2Fcm9iZXJ0LmRpY2tzb25AdXRhaC5lZHU=/1/0100018e7753538c-6c2b964c-150d-4333-b952-32fbb6befe5b-000000/UhhAiyuT7RjyU_Df2-geS7CsA8c=366
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-