Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a40bf228385e84b3888068cbfc57d1ee1bd481ff961e97fcfb9cdbc876c30777
-
Size
1.8MB
-
Sample
220921-hb8hgabbam
-
MD5
ebecaebe2e9f08b4ef69e408722ee56d
-
SHA1
3e9414e3d3f0e9b79c3b64ca215c2c5f4d27fd41
-
SHA256
a40bf228385e84b3888068cbfc57d1ee1bd481ff961e97fcfb9cdbc876c30777
-
SHA512
725b6b2dd3ba48ee4be149733e42cb9d0fdb617e5c74c2903fcf362e7c35332acae5ae8cb177b0da5a37644bcb35d6c93f1d51fbcc736ca845a1d57f6437e5dc
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
Static task
static1
Malware Config
Targets
-
-
Target
a40bf228385e84b3888068cbfc57d1ee1bd481ff961e97fcfb9cdbc876c30777
-
Size
1.8MB
-
MD5
ebecaebe2e9f08b4ef69e408722ee56d
-
SHA1
3e9414e3d3f0e9b79c3b64ca215c2c5f4d27fd41
-
SHA256
a40bf228385e84b3888068cbfc57d1ee1bd481ff961e97fcfb9cdbc876c30777
-
SHA512
725b6b2dd3ba48ee4be149733e42cb9d0fdb617e5c74c2903fcf362e7c35332acae5ae8cb177b0da5a37644bcb35d6c93f1d51fbcc736ca845a1d57f6437e5dc
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-