Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
32c9045d39bb696ea2946a36f1ad6e60N.exe
-
Size
66KB
-
Sample
240725-3xwq1swdnf
-
MD5
32c9045d39bb696ea2946a36f1ad6e60
-
SHA1
48ca1a0fbeb6da1b04601f6d3949628405cdf92b
-
SHA256
6278921136bbcba97463cc35c8f4c47c8411ea04c4775328288b4bddaa1032e3
-
SHA512
e8461ba2a6afbc1bc369238933ebbc5741842b4fbaecb7fc4f8c8fbb7fd8dc45a5d2171fde33cebe3971b9b5c2222c646f5c082074e76fbcfd8ab2eddc29e8f8
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX63:Zr3Z5IfQIR81ad5yX63
Malware Config
Targets
-
-
Target
32c9045d39bb696ea2946a36f1ad6e60N.exe
-
Size
66KB
-
MD5
32c9045d39bb696ea2946a36f1ad6e60
-
SHA1
48ca1a0fbeb6da1b04601f6d3949628405cdf92b
-
SHA256
6278921136bbcba97463cc35c8f4c47c8411ea04c4775328288b4bddaa1032e3
-
SHA512
e8461ba2a6afbc1bc369238933ebbc5741842b4fbaecb7fc4f8c8fbb7fd8dc45a5d2171fde33cebe3971b9b5c2222c646f5c082074e76fbcfd8ab2eddc29e8f8
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX63:Zr3Z5IfQIR81ad5yX63
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-