Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
87703ea84056a117f07ce15aab3bda00N.exe
-
Size
91KB
-
Sample
240721-h72psswdjf
-
MD5
87703ea84056a117f07ce15aab3bda00
-
SHA1
30dba80dcf19bb99e635bfb455996671890d026b
-
SHA256
ffc9c7c42257085bfc357166af588afe87210dc1da64490832db27919bdc7504
-
SHA512
99e987040b9d9f7bedc84459ee0a66238001c03a9ab00ed78291b86f5805395205e0a83ed3df0ed074838de034cb31f7065e4173256132f4ba8f8591d4a9afe7
-
SSDEEP
1536:dS2vOUHVOKZWwrgdGPiiv9vgmh7vfaOe/pwFquLFUTQnN3R9M5WLiVwt3B7H:djzhZWxivgmhbI/pqqsFUCN3R9MI+QB
Malware Config
Targets
-
-
Target
87703ea84056a117f07ce15aab3bda00N.exe
-
Size
91KB
-
MD5
87703ea84056a117f07ce15aab3bda00
-
SHA1
30dba80dcf19bb99e635bfb455996671890d026b
-
SHA256
ffc9c7c42257085bfc357166af588afe87210dc1da64490832db27919bdc7504
-
SHA512
99e987040b9d9f7bedc84459ee0a66238001c03a9ab00ed78291b86f5805395205e0a83ed3df0ed074838de034cb31f7065e4173256132f4ba8f8591d4a9afe7
-
SSDEEP
1536:dS2vOUHVOKZWwrgdGPiiv9vgmh7vfaOe/pwFquLFUTQnN3R9M5WLiVwt3B7H:djzhZWxivgmhbI/pqqsFUCN3R9MI+QB
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-