Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
One Piece The Game.exe
-
Size
17.3MB
-
Sample
240616-ae8zeavbnl
-
MD5
9327b9673775ca9a39f7dc3c55f20aad
-
SHA1
d780c4f88c3ff7428ac7d5972444a870c353edad
-
SHA256
ea172bd015926ad8cc4376ae5b2aa590921c465983fd22a8ecd21f80d83f06fc
-
SHA512
289b293d2780c6db8344f96dbadbc9e56c73db2cf25d0751ce7ba060bf5e586d3901f190971f6ce21aeb3ba8b96c49061834d29625707c6e126361f522a0be7f
-
SSDEEP
393216:MyYtEkZgf84gP8AxYDX1+TtIiFGuvB5IjWqn6e+NPz1Xy2XUd+da:KtRb4bX71QtIZS3ILn6e+7yv+da
Malware Config
Targets
-
-
Target
One Piece The Game.exe
-
Size
17.3MB
-
MD5
9327b9673775ca9a39f7dc3c55f20aad
-
SHA1
d780c4f88c3ff7428ac7d5972444a870c353edad
-
SHA256
ea172bd015926ad8cc4376ae5b2aa590921c465983fd22a8ecd21f80d83f06fc
-
SHA512
289b293d2780c6db8344f96dbadbc9e56c73db2cf25d0751ce7ba060bf5e586d3901f190971f6ce21aeb3ba8b96c49061834d29625707c6e126361f522a0be7f
-
SSDEEP
393216:MyYtEkZgf84gP8AxYDX1+TtIiFGuvB5IjWqn6e+NPz1Xy2XUd+da:KtRb4bX71QtIZS3ILn6e+7yv+da
-
Drops startup file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-