Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
BROOKIE.exe
-
Size
21.4MB
-
Sample
240525-xh3ywsec6t
-
MD5
50b2f67c4b2e7992082116677da3a797
-
SHA1
05cf43e873de34382c55302c6a4fc3f84ea5a57a
-
SHA256
2b9b6341d22f2d606f71c7e1be821ccf7a48a034ddd16f150c2c4ae9304eafbf
-
SHA512
02c9fe209175dac8b05d43e95f01ae94ff065e1526cf9dc5cf66bc1d16646004cfba0f8031d8cf6f2889010b66b0202870a5ba97d42d421c8962a2e69c1ebdcf
-
SSDEEP
393216:1Ek2Q858C093HJWQsUcR4NzxdVSSJEVOfS2rAkQy8tPhgJ:1+Qu093HYQFZ/S6fSo0tPWJ
Malware Config
Targets
-
-
Target
BROOKIE.exe
-
Size
21.4MB
-
MD5
50b2f67c4b2e7992082116677da3a797
-
SHA1
05cf43e873de34382c55302c6a4fc3f84ea5a57a
-
SHA256
2b9b6341d22f2d606f71c7e1be821ccf7a48a034ddd16f150c2c4ae9304eafbf
-
SHA512
02c9fe209175dac8b05d43e95f01ae94ff065e1526cf9dc5cf66bc1d16646004cfba0f8031d8cf6f2889010b66b0202870a5ba97d42d421c8962a2e69c1ebdcf
-
SSDEEP
393216:1Ek2Q858C093HJWQsUcR4NzxdVSSJEVOfS2rAkQy8tPhgJ:1+Qu093HYQFZ/S6fSo0tPWJ
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-