Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
249658063881bcc13f2b21919906d68272dff1348251a2a1cb77abaf0eaf0c3d.zip
-
Size
1.2MB
-
Sample
250109-w8wf3axlc1
-
MD5
8225ba2c90fada8b9b26cdbbad2f471b
-
SHA1
0c11c37bb58a2682302b0d9cfd9c2e9d753c55d4
-
SHA256
8e8d12f2cc2ebbbb38b83946259b3e67f381be00d4a560f27076d6baa021f339
-
SHA512
f11580ecbde059e642ef098852f26611ae28e18ee5583e840182aa41fe40154965d9a71cae59c3a78cb10d1ed362ca53d196156bf4551ede00d6a2f07ce1a09f
-
SSDEEP
24576:z+nXS0Fvo9GR1WLAdNdNtAvVBA0RsX+uLMgPc1lOO:z+nXS0FvoQLWLA9004xuLtg8O
Static task
static1
Malware Config
Targets
-
-
Target
249658063881bcc13f2b21919906d68272dff1348251a2a1cb77abaf0eaf0c3d.zip
-
Size
1.2MB
-
MD5
8225ba2c90fada8b9b26cdbbad2f471b
-
SHA1
0c11c37bb58a2682302b0d9cfd9c2e9d753c55d4
-
SHA256
8e8d12f2cc2ebbbb38b83946259b3e67f381be00d4a560f27076d6baa021f339
-
SHA512
f11580ecbde059e642ef098852f26611ae28e18ee5583e840182aa41fe40154965d9a71cae59c3a78cb10d1ed362ca53d196156bf4551ede00d6a2f07ce1a09f
-
SSDEEP
24576:z+nXS0Fvo9GR1WLAdNdNtAvVBA0RsX+uLMgPc1lOO:z+nXS0FvoQLWLA9004xuLtg8O
-
Meduza Stealer payload
-
Meduza family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Suspicious use of SetThreadContext
-