Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767N
-
Size
67KB
-
Sample
241005-a7zanswbll
-
MD5
66795014c931024a97d9e0dd5700b2e0
-
SHA1
20f2b670a1c50f61316dbe80f1fb5f9206b035d9
-
SHA256
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767
-
SHA512
172918705f6904282722edd50bd6d5b8602e21e0df89a817a60740a09a05b6b0c77851afadc008a3bd37756e69c35782e713f07a74b346c894041744e55553b0
-
SSDEEP
1536:1vP/MgpKuAUaShYThER3fzo0sEN3c4A9BFsVLyRQy4R/Rj:BP1KV2YThwz9sEYkGenVx
Static task
static1
Behavioral task
behavioral1
Sample
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767N.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767N
-
Size
67KB
-
MD5
66795014c931024a97d9e0dd5700b2e0
-
SHA1
20f2b670a1c50f61316dbe80f1fb5f9206b035d9
-
SHA256
d0febce99dfcbbc576d4de433d2f1094976e806e1d114b6ee68301876182f767
-
SHA512
172918705f6904282722edd50bd6d5b8602e21e0df89a817a60740a09a05b6b0c77851afadc008a3bd37756e69c35782e713f07a74b346c894041744e55553b0
-
SSDEEP
1536:1vP/MgpKuAUaShYThER3fzo0sEN3c4A9BFsVLyRQy4R/Rj:BP1KV2YThwz9sEYkGenVx
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-