Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b
-
Size
160KB
-
Sample
221003-tq7p9sedcr
-
MD5
6e59fcb0c2c2a5c02daa1413f5092310
-
SHA1
74917617ce9d83d12fc73e2ab6bbd8e2a95a7b26
-
SHA256
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b
-
SHA512
ae87bda425aef19f6cc6e3004c115687da05c53f71b735eef94dbeeb8ed630133c49bc9c902e157548f6ae84cde6dc0e00d051f830c6714f0b95a625653e666a
-
SSDEEP
1536:3+gDbKlmyJKz5jR7766dxocisPfDsCUjhe+SPBp9oEoTTLgY++++1sY+++++ZDdM:3xbkuVbvLn7Uj3
Static task
static1
Behavioral task
behavioral1
Sample
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b
-
Size
160KB
-
MD5
6e59fcb0c2c2a5c02daa1413f5092310
-
SHA1
74917617ce9d83d12fc73e2ab6bbd8e2a95a7b26
-
SHA256
877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b
-
SHA512
ae87bda425aef19f6cc6e3004c115687da05c53f71b735eef94dbeeb8ed630133c49bc9c902e157548f6ae84cde6dc0e00d051f830c6714f0b95a625653e666a
-
SSDEEP
1536:3+gDbKlmyJKz5jR7766dxocisPfDsCUjhe+SPBp9oEoTTLgY++++1sY+++++ZDdM:3xbkuVbvLn7Uj3
Score8/10-
Adds policy Run key to start application
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-