Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
04686cb8e9efa4dd4f138f8192558b275b29cfe5b9e8f82edf5681b57a669963
-
Size
1.6MB
-
Sample
240405-wwkh2abc99
-
MD5
05c27c72c9f8df2173c0736e5497cafd
-
SHA1
ed933acdb5d0f2c21c507637095ec76e37b48f4d
-
SHA256
04686cb8e9efa4dd4f138f8192558b275b29cfe5b9e8f82edf5681b57a669963
-
SHA512
53a490eb56c107b39c92c971df2265f761196d676b436a6e5dc4f5c86c3a3d80cb0b66e6a8d5a7fc1ae2d010d589c58f3f03d1dede6d6ab9efb22d6fc22e9df6
-
SSDEEP
49152:5YsWYuqKoKOhsTC9Kc/R4IA1SA4UlfZk57cxJQ:WsWYZKoKOhg4//RVAxLfWVmy
Malware Config
Targets
-
-
Target
04686cb8e9efa4dd4f138f8192558b275b29cfe5b9e8f82edf5681b57a669963
-
Size
1.6MB
-
MD5
05c27c72c9f8df2173c0736e5497cafd
-
SHA1
ed933acdb5d0f2c21c507637095ec76e37b48f4d
-
SHA256
04686cb8e9efa4dd4f138f8192558b275b29cfe5b9e8f82edf5681b57a669963
-
SHA512
53a490eb56c107b39c92c971df2265f761196d676b436a6e5dc4f5c86c3a3d80cb0b66e6a8d5a7fc1ae2d010d589c58f3f03d1dede6d6ab9efb22d6fc22e9df6
-
SSDEEP
49152:5YsWYuqKoKOhsTC9Kc/R4IA1SA4UlfZk57cxJQ:WsWYZKoKOhg4//RVAxLfWVmy
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-