Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f973f534528fc0d1b069209681152f6c30592ebea8f317fa2e9e111a32feaef2
-
Size
1.1MB
-
Sample
240507-drta9sff4t
-
MD5
7b0e0370a407942bf7150ce6b6b482b9
-
SHA1
b8a131f9d9d398741b3a201e49fe43300f39ef87
-
SHA256
f973f534528fc0d1b069209681152f6c30592ebea8f317fa2e9e111a32feaef2
-
SHA512
4cb55725afbf388dfd58b98f336845234b4852930f0cae797de9ad63caf1a16f224f8c57c907a40bda7145cf911f2426eecc067323930dd8bbccbfa2579ec98a
-
SSDEEP
24576:86EJL+79Wy6R19iGI3MxVKekP6ESvmTnjmJBp96jhQ8BjK5XZ8OySRgRIaQsyzkG:5EFY8i98xgq7mjjYBAzUJyJFZQjkG
Malware Config
Targets
-
-
Target
f973f534528fc0d1b069209681152f6c30592ebea8f317fa2e9e111a32feaef2
-
Size
1.1MB
-
MD5
7b0e0370a407942bf7150ce6b6b482b9
-
SHA1
b8a131f9d9d398741b3a201e49fe43300f39ef87
-
SHA256
f973f534528fc0d1b069209681152f6c30592ebea8f317fa2e9e111a32feaef2
-
SHA512
4cb55725afbf388dfd58b98f336845234b4852930f0cae797de9ad63caf1a16f224f8c57c907a40bda7145cf911f2426eecc067323930dd8bbccbfa2579ec98a
-
SSDEEP
24576:86EJL+79Wy6R19iGI3MxVKekP6ESvmTnjmJBp96jhQ8BjK5XZ8OySRgRIaQsyzkG:5EFY8i98xgq7mjjYBAzUJyJFZQjkG
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-