Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ba19584a7fb91f89a4bf864b77477e108c2329816ea50eb635ee8138eadad415

  • Size

    1.8MB

  • Sample

    220918-2qskcadda2

  • MD5

    8a04966531e93843ce8b35fd58964b21

  • SHA1

    a3a0b3151214d3df93eb9e6cf25620bf3d134943

  • SHA256

    ba19584a7fb91f89a4bf864b77477e108c2329816ea50eb635ee8138eadad415

  • SHA512

    acf0c645cb7ace3db4921216689945f0043774daf1c1ced25a6167dd9bcf762d4df28acdafcbcfbb4aa347b2cc0d3341d2df4d3bccb18682e1dae0df766a977b

  • SSDEEP

    49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig

Score
9/10

Malware Config

Targets

    • Target

      ba19584a7fb91f89a4bf864b77477e108c2329816ea50eb635ee8138eadad415

    • Size

      1.8MB

    • MD5

      8a04966531e93843ce8b35fd58964b21

    • SHA1

      a3a0b3151214d3df93eb9e6cf25620bf3d134943

    • SHA256

      ba19584a7fb91f89a4bf864b77477e108c2329816ea50eb635ee8138eadad415

    • SHA512

      acf0c645cb7ace3db4921216689945f0043774daf1c1ced25a6167dd9bcf762d4df28acdafcbcfbb4aa347b2cc0d3341d2df4d3bccb18682e1dae0df766a977b

    • SSDEEP

      49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks whether UAC is enabled

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks