Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
FRST64.exe
-
Size
2.3MB
-
Sample
240612-jwjwaavfmg
-
MD5
42f626b952be10e6f0826631431fc2dd
-
SHA1
c0f1ba2f53ea222581be47b6a1ca3f2efe9e7507
-
SHA256
741fc8882114d576c049e5a0e830282ae99b39df35cb5a090bf0e8f4b5ddb353
-
SHA512
9571e11f179b928ea41c7c24512ae6536154dca42eb32d658ae55a0a49956b42933f23c0860f9f58cd1e57f08421becbd8d6107b9afd55da41b3c80e20a640df
-
SSDEEP
49152:o2EYTb8atv1orq+pEiSDTj1VyvBaj3jnE/ImdPFRgiYhFE94Ik0ZD5FJ9X+:tXbIrqtnDmdPFRTY73IRZD5FLX
Malware Config
Targets
-
-
Target
FRST64.exe
-
Size
2.3MB
-
MD5
42f626b952be10e6f0826631431fc2dd
-
SHA1
c0f1ba2f53ea222581be47b6a1ca3f2efe9e7507
-
SHA256
741fc8882114d576c049e5a0e830282ae99b39df35cb5a090bf0e8f4b5ddb353
-
SHA512
9571e11f179b928ea41c7c24512ae6536154dca42eb32d658ae55a0a49956b42933f23c0860f9f58cd1e57f08421becbd8d6107b9afd55da41b3c80e20a640df
-
SSDEEP
49152:o2EYTb8atv1orq+pEiSDTj1VyvBaj3jnE/ImdPFRgiYhFE94Ik0ZD5FJ9X+:tXbIrqtnDmdPFRTY73IRZD5FLX
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Modifies boot configuration data using bcdedit
-