Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9461735e39418614bea639e956629566a3c8cd20606b2ad2e2378ff6054cf697
-
Size
209KB
-
Sample
241125-by1b2swrck
-
MD5
de892c584200929c4fc67078e3f2764f
-
SHA1
db9e9a21389bd5ceb4d4984ff75d741f0dbda54b
-
SHA256
9461735e39418614bea639e956629566a3c8cd20606b2ad2e2378ff6054cf697
-
SHA512
9c78d5aff308a14929fb942b14ce25236a097e372651a78b32485cb5d5b1408b1a0c1794e963aa89986bb3159d073f73045e400e014ef02822a19fa122e75569
-
SSDEEP
3072:zr8WDrCkkyWj1DMcpYTIMl0H7ldl2VfsjWSFXTQAatQRkoutbyruJV8yEJo7zWU:PuNyI5pRMINYk6EXTQAcoSkuj8yE6WU
Static task
static1
Behavioral task
behavioral1
Sample
9461735e39418614bea639e956629566a3c8cd20606b2ad2e2378ff6054cf697.exe
Resource
win7-20241010-en
Malware Config
Targets
-
-
Target
9461735e39418614bea639e956629566a3c8cd20606b2ad2e2378ff6054cf697
-
Size
209KB
-
MD5
de892c584200929c4fc67078e3f2764f
-
SHA1
db9e9a21389bd5ceb4d4984ff75d741f0dbda54b
-
SHA256
9461735e39418614bea639e956629566a3c8cd20606b2ad2e2378ff6054cf697
-
SHA512
9c78d5aff308a14929fb942b14ce25236a097e372651a78b32485cb5d5b1408b1a0c1794e963aa89986bb3159d073f73045e400e014ef02822a19fa122e75569
-
SSDEEP
3072:zr8WDrCkkyWj1DMcpYTIMl0H7ldl2VfsjWSFXTQAatQRkoutbyruJV8yEJo7zWU:PuNyI5pRMINYk6EXTQAcoSkuj8yE6WU
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-