Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044
-
Size
1.8MB
-
Sample
221006-bb5y1sgae5
-
MD5
55efd4381a479c72a9c73aaf83cab70c
-
SHA1
3f691d25be6e03145a5fbd3189d345d66558444c
-
SHA256
429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044
-
SHA512
a9df3f7178ba9e2ed0f7b665c8eef48edecaf5d9be600c3f9ec72bb77bae3768b76c372ea3d79b6db96d0c1d8fcf910fe9397370cd4916af0d5fa1c6574a6160
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
Static task
static1
Malware Config
Targets
-
-
Target
429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044
-
Size
1.8MB
-
MD5
55efd4381a479c72a9c73aaf83cab70c
-
SHA1
3f691d25be6e03145a5fbd3189d345d66558444c
-
SHA256
429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044
-
SHA512
a9df3f7178ba9e2ed0f7b665c8eef48edecaf5d9be600c3f9ec72bb77bae3768b76c372ea3d79b6db96d0c1d8fcf910fe9397370cd4916af0d5fa1c6574a6160
-
SSDEEP
49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-