Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
7Static
static
3geode-inst...in.exe
windows10-2004-x64
7$PLUGINSDI...LL.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3Geode.dll
windows10-2004-x64
1GeodeUninstaller.exe
windows10-2004-x64
7$PLUGINSDI...LL.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3GeodeUpdater.exe
windows10-2004-x64
1VC_redist.x64.exe
windows10-2004-x64
4XInput1_4.dll
windows10-2004-x64
1General
-
Target
geode-installer-v3.2.0-win.exe
-
Size
34.2MB
-
Sample
240723-m1enxasgqk
-
MD5
daaf7340c7db388f19cdbca08dab3e9a
-
SHA1
9b4df1d21a3bacd75f438c96344be3515c6a0ca7
-
SHA256
2163394fe3e8a630cebd0f44e57c1fea5890a24773327db138a72ee1886eb263
-
SHA512
bf823ca26bebaa5c6a4174342aec57ccac67ced461f50e4a045e01d5d7d73b9c32443d7c9b8b7481d3f54f2e3fe8487c1b49a4b8b8ea165b5cfa2cb07f17c116
-
SSDEEP
786432:lMO8SJdkzt6VmvIASP4XwTkYQMqFVJMAWXoyO5xhy+u:lr8SYzTawg5AQzQ8
Static task
static1
Behavioral task
behavioral1
Sample
geode-installer-v3.2.0-win.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral2
Sample
$PLUGINSDIR/LangDLL.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral5
Sample
Geode.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral6
Sample
GeodeUninstaller.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/LangDLL.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral10
Sample
GeodeUpdater.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral11
Sample
VC_redist.x64.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral12
Sample
XInput1_4.dll
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
geode-installer-v3.2.0-win.exe
-
Size
34.2MB
-
MD5
daaf7340c7db388f19cdbca08dab3e9a
-
SHA1
9b4df1d21a3bacd75f438c96344be3515c6a0ca7
-
SHA256
2163394fe3e8a630cebd0f44e57c1fea5890a24773327db138a72ee1886eb263
-
SHA512
bf823ca26bebaa5c6a4174342aec57ccac67ced461f50e4a045e01d5d7d73b9c32443d7c9b8b7481d3f54f2e3fe8487c1b49a4b8b8ea165b5cfa2cb07f17c116
-
SSDEEP
786432:lMO8SJdkzt6VmvIASP4XwTkYQMqFVJMAWXoyO5xhy+u:lr8SYzTawg5AQzQ8
Score7/10-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/LangDLL.dll
-
Size
8KB
-
MD5
313661ec12ed5ce1fd0b3292bf02cb69
-
SHA1
fd341676cf680a9f0f690c35b43feadc0693e9a8
-
SHA256
2e08e077a0800ec39c0596f4dd91cbbfa917eeef2d75a00767917b8d1f6884ac
-
SHA512
a16f35c6019eb1431a3d03fb7d0935c272756f2a8363f541e168a55b2e20a85ee90191715c845ab0588eef8f2af6cf91ac75c5bf1a5d0c61c513339006da9ff2
-
SSDEEP
96:b0nLo47eYkrGj23kBTPEa8ir2qUuRkNB/RMZCabEO/2/HdNfdpX2N:KoZYkrGj20tEEeYkv/RaCA/2/9h2N
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
28KB
-
MD5
81e34f1c4b04a15dbce200c52f598f67
-
SHA1
f40a922ad7a5494e2aeeaa2b961d96738e888af7
-
SHA256
b89448b9fd7be5ef215cac6d973a57c0e75e1fffa25552afe174855c9b71fdf9
-
SHA512
577f52a292075269f0e8ec4c6d243b2ed411872e009839553020929a8263174ad97943f150543e4ea6cb327d95e227f4065441a9d2106b7cabf1cb872dbcc181
-
SSDEEP
384:xmEs6sVqQq0DwRiGUaLYuAXLaMoy4m973uwYkvZ6YfkzB8yy1Eiu8ILvFd/9:xmEwqZ2wRiGUcY8TBsdvEbB8yyvIJ
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
14KB
-
MD5
2726673c720a296442c8ed134b41d169
-
SHA1
b8050c85017fcda78f6b82cc86ad277bb0dbd539
-
SHA256
778b2bfbf3f4e641161f40c8174442a4d3865f097e3a2a383356dbfcac8005ab
-
SHA512
95fd8cd96a4c627dfc1a89a98630ead3fe431360ab15f2324a52fdd03b2b493bdc44a4d6d0189276826725ea4e48aeb4711459a459b92a80be51e9431b70bb0b
-
SSDEEP
192:clWWck581HwPRLG/CocFR1w5nEYkv/RGl5BoiS+6SZSM3CU:Hdk5SoRLG/CocFR62Ykv8l5BoiFXyU
Score3/10 -
-
-
Target
Geode.dll
-
Size
11.7MB
-
MD5
3644a2653f403c9c3c58f8f624a81a4c
-
SHA1
7a76072bcf7c8228dc60ca668e8af1530ca88db3
-
SHA256
9b198fdf62f5f7d62b91ddc2f46647bf4d87dde035e3c27345f80bc086795233
-
SHA512
4ecaef5addde00da9c52c7e122d6f8d523edd03abe9044e8b34f0b970f07d45217cbafe9f05489dc6cf9a4631ddaf669a25cad9135d74148fdcfb627a7db986b
-
SSDEEP
98304:62q1tyT+SY0hWG6B0tT1P2LW+GWfD2UY0+OU0Bz8NN:62q1o6SYrKKBr2UBTU0FE
Score1/10 -
-
-
Target
GeodeUninstaller.exe
-
Size
158KB
-
MD5
29b6d2990f9f399b5582c5939aba4eb0
-
SHA1
c0666f6064780345d268ca68fe0e86e7418c0039
-
SHA256
c9438abf8c9fd6f11a242925d444c03af72017d9f9339bf3bf521504abea6f6a
-
SHA512
8814591817e30b15a2d7ea381e5a1614d196a965ad042ef5ef44c6b6e32153d8cb8d250b183575a4d185e13911d97028609df9f12e29ea5d9a316e78f837288e
-
SSDEEP
3072:Qrv+LsMjvFsOTb98xQT+5U5qwqF3gIXKVxpW+SzdkVraG:UWLsKB0IqJ7gzSzmVT
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
$PLUGINSDIR/LangDLL.dll
-
Size
8KB
-
MD5
313661ec12ed5ce1fd0b3292bf02cb69
-
SHA1
fd341676cf680a9f0f690c35b43feadc0693e9a8
-
SHA256
2e08e077a0800ec39c0596f4dd91cbbfa917eeef2d75a00767917b8d1f6884ac
-
SHA512
a16f35c6019eb1431a3d03fb7d0935c272756f2a8363f541e168a55b2e20a85ee90191715c845ab0588eef8f2af6cf91ac75c5bf1a5d0c61c513339006da9ff2
-
SSDEEP
96:b0nLo47eYkrGj23kBTPEa8ir2qUuRkNB/RMZCabEO/2/HdNfdpX2N:KoZYkrGj20tEEeYkv/RaCA/2/9h2N
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
28KB
-
MD5
81e34f1c4b04a15dbce200c52f598f67
-
SHA1
f40a922ad7a5494e2aeeaa2b961d96738e888af7
-
SHA256
b89448b9fd7be5ef215cac6d973a57c0e75e1fffa25552afe174855c9b71fdf9
-
SHA512
577f52a292075269f0e8ec4c6d243b2ed411872e009839553020929a8263174ad97943f150543e4ea6cb327d95e227f4065441a9d2106b7cabf1cb872dbcc181
-
SSDEEP
384:xmEs6sVqQq0DwRiGUaLYuAXLaMoy4m973uwYkvZ6YfkzB8yy1Eiu8ILvFd/9:xmEwqZ2wRiGUcY8TBsdvEbB8yyvIJ
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
14KB
-
MD5
2726673c720a296442c8ed134b41d169
-
SHA1
b8050c85017fcda78f6b82cc86ad277bb0dbd539
-
SHA256
778b2bfbf3f4e641161f40c8174442a4d3865f097e3a2a383356dbfcac8005ab
-
SHA512
95fd8cd96a4c627dfc1a89a98630ead3fe431360ab15f2324a52fdd03b2b493bdc44a4d6d0189276826725ea4e48aeb4711459a459b92a80be51e9431b70bb0b
-
SSDEEP
192:clWWck581HwPRLG/CocFR1w5nEYkv/RGl5BoiS+6SZSM3CU:Hdk5SoRLG/CocFR62Ykv8l5BoiFXyU
Score3/10 -
-
-
Target
GeodeUpdater.exe
-
Size
90KB
-
MD5
b5dada71f4b5ee7936c1e76c37f72563
-
SHA1
aaaeca2440d0d00cc86a3b85294578a2c2dde87f
-
SHA256
e4cc8207f1aeb921a55add47ff6ba21640930a78ba7c4a653f5f6be613b5ebde
-
SHA512
f5475c438c565a473cc6ae9c68e45b512c3f3a96c084084d7d13fadd1c4241c948f64d6c128b8b579fcad414ab39a32aa6e7d807d12a6c226ee22e9d0171ebf0
-
SSDEEP
1536:xYXmJEFM8Pj7hXQlAmDIPU3B9Nc4zkdQHavP3Vvt/d5ywB:xEL9czyGHavPH/dw
Score1/10 -
-
-
Target
VC_redist.x64.exe
-
Size
24.2MB
-
MD5
1d545507009cc4ec7409c1bc6e93b17b
-
SHA1
84c61fadf8cd38016fb7632969b3ace9e54b763a
-
SHA256
3642e3f95d50cc193e4b5a0b0ffbf7fe2c08801517758b4c8aeb7105a091208a
-
SHA512
5935b69f5138ac3fbc33813c74da853269ba079f910936aefa95e230c6092b92f6225bffb594e5dd35ff29bf260e4b35f91adede90fdf5f062030d8666fd0104
-
SSDEEP
786432:tSp+Ty2SfUfnbDDko5dFMYqlQbgAVLSElbmucMuZZxs6Sf:4p+Ty2SfWnHDk8FjVbfzPTq4
Score4/10 -
-
-
Target
XInput1_4.dll
-
Size
59KB
-
MD5
8d1acc8e937c4ab664cf556b5530838a
-
SHA1
96112543de1c91c8c83eec6f1b8dc322f2fcaa76
-
SHA256
684b3c9f5ba63f550d07793ab91d68b68cbdb85bffee67bde212576bb0d81a2a
-
SHA512
fc8de7b2ce381c2d71ba029250ea84139ee970fcc676bba05873a0270923672613ee7faaa370d7772bc549dd37bcca408e595b12b91d2b6661bd10d337ad3178
-
SSDEEP
1536:pCAiqLeyHmb+RlzM838vtolMAL47qD6KO1:pCf3uMq8FofLHHO
Score1/10 -