Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
BW-Spoofer v1.8.exe
-
Size
608KB
-
Sample
240419-het49aca8t
-
MD5
80b055d3c394b8d67a3471209baaffff
-
SHA1
fc91bae8f742757c369ece9708c90cb45bd38a84
-
SHA256
421adb3b2479b676edb2e536abadf8063b0bf56f50732a06e0c59afb7ed995b3
-
SHA512
e75b76d7c776a85aa3f14de4e0da983b8997b811901f30b153234a05a01b9b18aee4729189e7195b98f696c35b6d7032ef8b6bfee307307f4a9be09ab8ee30fb
-
SSDEEP
12288:f+Q/fzJitK/Ujd7c9c+l3xa5yGsi+1u3ENf:f+QjJitMUJ7+l3xULsc3E5
Static task
static1
Behavioral task
behavioral1
Sample
BW-Spoofer v1.8.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
BW-Spoofer v1.8.exe
-
Size
608KB
-
MD5
80b055d3c394b8d67a3471209baaffff
-
SHA1
fc91bae8f742757c369ece9708c90cb45bd38a84
-
SHA256
421adb3b2479b676edb2e536abadf8063b0bf56f50732a06e0c59afb7ed995b3
-
SHA512
e75b76d7c776a85aa3f14de4e0da983b8997b811901f30b153234a05a01b9b18aee4729189e7195b98f696c35b6d7032ef8b6bfee307307f4a9be09ab8ee30fb
-
SSDEEP
12288:f+Q/fzJitK/Ujd7c9c+l3xa5yGsi+1u3ENf:f+QjJitMUJ7+l3xULsc3E5
Score8/10-
Downloads MZ/PE file
-
Sets service image path in registry
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-