Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2496cdbf3ed9e67da86e642cb15b08f0N.exe
-
Size
1.3MB
-
Sample
240709-dmk44ataqq
-
MD5
2496cdbf3ed9e67da86e642cb15b08f0
-
SHA1
872b7a67b8d021791941eb23af48f41a9d9c7e08
-
SHA256
9efc8842dc994d62ab86ad49fc83a412c5aed94bae408833176aa7ba968da87d
-
SHA512
344d2e5f7f735f43de1bf009e457c89fa4fdf594fcc0cc17dfb6154ee6dd5ed0f0c60045e4cc628b8903081700e9ebd0bcdf230254b93f096e68f6d05d6d1499
-
SSDEEP
24576:oWANaIGSub7xrmvGpFRn3uwBCK5Mhv8HDFdB8uI+Vl0/FYv+WKkxwl/7:VANRGfVqek0bHJ8p+8WvGOaD
Malware Config
Targets
-
-
Target
2496cdbf3ed9e67da86e642cb15b08f0N.exe
-
Size
1.3MB
-
MD5
2496cdbf3ed9e67da86e642cb15b08f0
-
SHA1
872b7a67b8d021791941eb23af48f41a9d9c7e08
-
SHA256
9efc8842dc994d62ab86ad49fc83a412c5aed94bae408833176aa7ba968da87d
-
SHA512
344d2e5f7f735f43de1bf009e457c89fa4fdf594fcc0cc17dfb6154ee6dd5ed0f0c60045e4cc628b8903081700e9ebd0bcdf230254b93f096e68f6d05d6d1499
-
SSDEEP
24576:oWANaIGSub7xrmvGpFRn3uwBCK5Mhv8HDFdB8uI+Vl0/FYv+WKkxwl/7:VANRGfVqek0bHJ8p+8WvGOaD
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-