Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dd36a21b3f11b6142a898ce80d046abf5f8e0b62fa112957db619c865272ce20.exe
-
Size
134KB
-
Sample
240719-v5xz2swbla
-
MD5
7f723f9e10de5dd1ce6d4e6bde89abe4
-
SHA1
555e9af7d45b4436709150c474c28908225132f5
-
SHA256
dd36a21b3f11b6142a898ce80d046abf5f8e0b62fa112957db619c865272ce20
-
SHA512
ccce6e52dca4c11a8de88118b92b477c4f12f035557d6fe132d95e663d67721c76999cff688baeb349e494bfc89d49d636d8ff25207ed1c232f3b2f68508bb7e
-
SSDEEP
3072:/kHnTc+neY+r6MVpHQhIB2E+kgaJysLTVm1AYUb:/kHTi3US/
Static task
static1
Behavioral task
behavioral1
Sample
dd36a21b3f11b6142a898ce80d046abf5f8e0b62fa112957db619c865272ce20.exe
Resource
win7-20240708-en
Malware Config
Extracted
formbook
4.1
mu94
thenextamendment.net
automatiza.xyz
psikologhazelgungor.com
90857.net
robertoblondetrealtor.site
rv0awy.rest
74657.ooo
adigidea.com
world-healing.online
health4world.com
shyan.fun
anviltotable.com
vinger.online
juizltd.com
twmk.asia
cakescrushbyruby.com
listxtreme.com
00050026.xyz
finessedesignhouse.com
jsmm-27.xyz
privet128.band
wyhl668.top
crystalcornerdesignn.com
kameltoe2024.xyz
mwquas.xyz
bt365860.com
c2r2h.xyz
bregylzj.xyz
dxlhu.asia
mythandbody.com
7y-sorte.net
gameogem.com
yourhug.xyz
reviewfreak.net
langitwin.lol
jkku2.rest
het789.com
cn00417984.shop
ry5ls1e02ai.top
cathedrals.shop
kaaatooni.com
ctventure.net
50732650.com
699519f.xyz
sailors.solutions
couples-therapy-39471.bond
eco-liga.com
youngtv.net
31hum.com
cocaincoutre.com
kzliw.xyz
online-business-70709.bond
cleliasfamilychildcare.com
commonhype.dev
tufabricadefiestas.com
playstayaussie.com
best-precious.com
kbk99.fun
cprcertificationcoach.com
mysleepfriend.shop
bt365437.com
rajasusu.pics
youtuberjumpstart.com
bfgj46578456454.vip
dmvdrivingpermit.com
Targets
-
-
Target
dd36a21b3f11b6142a898ce80d046abf5f8e0b62fa112957db619c865272ce20.exe
-
Size
134KB
-
MD5
7f723f9e10de5dd1ce6d4e6bde89abe4
-
SHA1
555e9af7d45b4436709150c474c28908225132f5
-
SHA256
dd36a21b3f11b6142a898ce80d046abf5f8e0b62fa112957db619c865272ce20
-
SHA512
ccce6e52dca4c11a8de88118b92b477c4f12f035557d6fe132d95e663d67721c76999cff688baeb349e494bfc89d49d636d8ff25207ed1c232f3b2f68508bb7e
-
SSDEEP
3072:/kHnTc+neY+r6MVpHQhIB2E+kgaJysLTVm1AYUb:/kHTi3US/
-
Formbook payload
-
Suspicious use of SetThreadContext
-