Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f06ffbdef1e9a2dbf895d6537ee7f9570717ed0f6897ba1ce1da42da527b2e65N
-
Size
1.9MB
-
Sample
240920-2tgbgssfja
-
MD5
64260d17d575ecd7e8ec3602ab9ce110
-
SHA1
9112efff7e05366bb0ce4bdd24ed4cd715375518
-
SHA256
f06ffbdef1e9a2dbf895d6537ee7f9570717ed0f6897ba1ce1da42da527b2e65
-
SHA512
e32bd733cf5d46b1cda4ed6cc0a712aae0243ca8b3234b382e0bc67d37c11de6d8fb0b83f8514150ae2352c82fb30dd118a1b99dce44675c307bfe5cf10e233b
-
SSDEEP
49152:V/VJ66REO7hyLUfef975cnm1dm9glsAGJt48cWFcoWA1bp:pVgOloUc97H7mysH4Wj1d
Malware Config
Targets
-
-
Target
f06ffbdef1e9a2dbf895d6537ee7f9570717ed0f6897ba1ce1da42da527b2e65N
-
Size
1.9MB
-
MD5
64260d17d575ecd7e8ec3602ab9ce110
-
SHA1
9112efff7e05366bb0ce4bdd24ed4cd715375518
-
SHA256
f06ffbdef1e9a2dbf895d6537ee7f9570717ed0f6897ba1ce1da42da527b2e65
-
SHA512
e32bd733cf5d46b1cda4ed6cc0a712aae0243ca8b3234b382e0bc67d37c11de6d8fb0b83f8514150ae2352c82fb30dd118a1b99dce44675c307bfe5cf10e233b
-
SSDEEP
49152:V/VJ66REO7hyLUfef975cnm1dm9glsAGJt48cWFcoWA1bp:pVgOloUc97H7mysH4Wj1d
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-