Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
virussign.com_98770af63def2b3ac13d412f41811190.vir
-
Size
35KB
-
Sample
240528-xarkwsfe3z
-
MD5
98770af63def2b3ac13d412f41811190
-
SHA1
86dda250969083d417987bdb87d89e797c1066db
-
SHA256
570deeabd96f1f8231526c14405f83e14621c2a5e275c5f052437451ed49da4d
-
SHA512
98380a9293bafd3acdcda2bce69b37d1095e5246f5a641ff20f915888fdbf6f87125717175e2cb671b9a0a4e03c4c61908b8a1f27142620f7db2d84d4913df39
-
SSDEEP
768:M3EVdV0YXY/nckNsWheCNSdd57Do5utsp1TOIIIwjky:lVdm5/nprh3Ny57guSTOjz
Malware Config
Targets
-
-
Target
virussign.com_98770af63def2b3ac13d412f41811190.vir
-
Size
35KB
-
MD5
98770af63def2b3ac13d412f41811190
-
SHA1
86dda250969083d417987bdb87d89e797c1066db
-
SHA256
570deeabd96f1f8231526c14405f83e14621c2a5e275c5f052437451ed49da4d
-
SHA512
98380a9293bafd3acdcda2bce69b37d1095e5246f5a641ff20f915888fdbf6f87125717175e2cb671b9a0a4e03c4c61908b8a1f27142620f7db2d84d4913df39
-
SSDEEP
768:M3EVdV0YXY/nckNsWheCNSdd57Do5utsp1TOIIIwjky:lVdm5/nprh3Ny57guSTOjz
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-