Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-10-03_519535aa80c87eb0ad28668644e41afc_poet-rat_snatch
-
Size
22.2MB
-
Sample
241003-q7129sydpm
-
MD5
519535aa80c87eb0ad28668644e41afc
-
SHA1
1a97d3fd954366d6d525017c6ce16106aa4ab35a
-
SHA256
2a898112bf2849879d0ad89cb65cdd7c9355a9fdf59526e02a903bebdefe75fb
-
SHA512
013800c00d3d4761fea67a4bcea7565718f728131e12d0f68e41507605b90cd61056ae1f0219fff9b883d7ac63a23a7e8937ec5f52a2dbcf45b387c116164742
-
SSDEEP
98304:nXJd9PezmX1FdpuU2iTt07O4sRjrtXMcnLxsU6tLcuOEDEsCYjt3lfpOMgNcj:wKzTaOR18cL2HxcfEDE61fkMqc
Static task
static1
Behavioral task
behavioral1
Sample
2024-10-03_519535aa80c87eb0ad28668644e41afc_poet-rat_snatch.exe
Resource
win7-20240708-en
Malware Config
Extracted
lumma
https://reinforcenh.shop/api
https://stogeneratmns.shop/api
https://fragnantbui.shop/api
https://drawzhotdog.shop/api
https://vozmeatillu.shop/api
https://offensivedzvju.shop/api
https://ghostreedmnu.shop/api
https://gutterydhowi.shop/api
https://coinnyfrownwejr.shop/api
Targets
-
-
Target
2024-10-03_519535aa80c87eb0ad28668644e41afc_poet-rat_snatch
-
Size
22.2MB
-
MD5
519535aa80c87eb0ad28668644e41afc
-
SHA1
1a97d3fd954366d6d525017c6ce16106aa4ab35a
-
SHA256
2a898112bf2849879d0ad89cb65cdd7c9355a9fdf59526e02a903bebdefe75fb
-
SHA512
013800c00d3d4761fea67a4bcea7565718f728131e12d0f68e41507605b90cd61056ae1f0219fff9b883d7ac63a23a7e8937ec5f52a2dbcf45b387c116164742
-
SSDEEP
98304:nXJd9PezmX1FdpuU2iTt07O4sRjrtXMcnLxsU6tLcuOEDEsCYjt3lfpOMgNcj:wKzTaOR18cL2HxcfEDE61fkMqc
-
Suspicious use of SetThreadContext
-