Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
425ddd3f45aa02d04a06cf03129d403fe209fcc1a2a40f4cffa5e6042d1529c3.exe
-
Size
7.8MB
-
Sample
241009-nx7qystdqq
-
MD5
38be83afea1e906c05e5b851253cbc6a
-
SHA1
85841044836479ac3c0b9fb7f1f28928621a4a99
-
SHA256
425ddd3f45aa02d04a06cf03129d403fe209fcc1a2a40f4cffa5e6042d1529c3
-
SHA512
17334120d971f389db66d529e76f4385948723868bbaeb3dda45ef0988167f11288fdf65d976179889f13bbea128dd9b768e515a91f18ad2812770020d9b68f7
-
SSDEEP
196608:UB4i/VIa9g50YQjhHTbq7kGFco1JMdMZoWtz+oeT4wBYR5+Pmk+uy:U6aK6ZSFco1JtZDt+b4F5Hk+u
Static task
static1
Behavioral task
behavioral1
Sample
425ddd3f45aa02d04a06cf03129d403fe209fcc1a2a40f4cffa5e6042d1529c3.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
425ddd3f45aa02d04a06cf03129d403fe209fcc1a2a40f4cffa5e6042d1529c3.exe
-
Size
7.8MB
-
MD5
38be83afea1e906c05e5b851253cbc6a
-
SHA1
85841044836479ac3c0b9fb7f1f28928621a4a99
-
SHA256
425ddd3f45aa02d04a06cf03129d403fe209fcc1a2a40f4cffa5e6042d1529c3
-
SHA512
17334120d971f389db66d529e76f4385948723868bbaeb3dda45ef0988167f11288fdf65d976179889f13bbea128dd9b768e515a91f18ad2812770020d9b68f7
-
SSDEEP
196608:UB4i/VIa9g50YQjhHTbq7kGFco1JMdMZoWtz+oeT4wBYR5+Pmk+uy:U6aK6ZSFco1JtZDt+b4F5Hk+u
-
XMRig Miner payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-