Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

RIP_YOUR_PC_LOL.exe

debian-12-armhf

3

RIP_YOUR_PC_LOL.exe

debian-12-mipsel

3

RIP_YOUR_PC_LOL.exe

debian-9-armhf

3

RIP_YOUR_PC_LOL.exe

debian-9-mips

3

RIP_YOUR_PC_LOL.exe

debian-9-mipsel

3

RIP_YOUR_PC_LOL.exe

ubuntu-22.04-amd64

3

RIP_YOUR_PC_LOL.exe

ubuntu-24.04-amd64

3

Resubmissions

07/12/2024, 03:49

241207-edgkzszrdj 10

04/12/2024, 22:38

241204-2kv4aa1jgn 10

04/12/2024, 20:49

241204-zl1ztawnfk 10

04/12/2024, 20:48

241204-zlmgeszrbt 10

04/12/2024, 19:23

241204-x3662sspbq 10

04/12/2024, 19:14

241204-xxpd2sslem 10

19/07/2024, 04:07

240719-epssdsvgkf 10

17/07/2024, 17:11

240717-vqak7szhjl 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RIP_YOUR_PC_LOL.exe

  • Size

    22.5MB

  • MD5

    52867174362410d63215d78e708103ea

  • SHA1

    7ae4e1048e4463a4201bdeaf224c5b6face681bf

  • SHA256

    37d8e1ce3b6e6488942717aa78cb54785edc985143bcc8d9ba9f42d73a3dbd7a

  • SHA512

    89e17e147d3f073e479e85d0b0321f6264bbc2aa84c930ed645e8f5cde3f1e58812c3db1ba0f10bee6ce7ac0731e1e3de6747a9b3c4d63a564dd8d904bd726ab

  • SSDEEP

    393216:HJLgf7BPkdKzrZciLxv8naSNtPr5rn57M84UTB9xO5/VWvJKJPkwdnfZ4y5SDkFV:poBPQwxMR7pn5qUTB9xOFVWvJKJPkwd9

Score
10/10
blackmoonnanocorenjrat

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Nanocore family
    nanocore
  • Njrat family
    njrat
  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • NirSoft WebBrowserPassView 1 IoCs

    Password recovery tool for various web browsers

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • RIP_YOUR_PC_LOL.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections