Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044

  • Size

    1.8MB

  • Sample

    221006-bb5y1sgae5

  • MD5

    55efd4381a479c72a9c73aaf83cab70c

  • SHA1

    3f691d25be6e03145a5fbd3189d345d66558444c

  • SHA256

    429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044

  • SHA512

    a9df3f7178ba9e2ed0f7b665c8eef48edecaf5d9be600c3f9ec72bb77bae3768b76c372ea3d79b6db96d0c1d8fcf910fe9397370cd4916af0d5fa1c6574a6160

  • SSDEEP

    49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig

Score
9/10

Malware Config

Targets

    • Target

      429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044

    • Size

      1.8MB

    • MD5

      55efd4381a479c72a9c73aaf83cab70c

    • SHA1

      3f691d25be6e03145a5fbd3189d345d66558444c

    • SHA256

      429f1d467306e151da9b18829be1d8e2f07f76e9b45127491ea101037cede044

    • SHA512

      a9df3f7178ba9e2ed0f7b665c8eef48edecaf5d9be600c3f9ec72bb77bae3768b76c372ea3d79b6db96d0c1d8fcf910fe9397370cd4916af0d5fa1c6574a6160

    • SSDEEP

      49152:AiSzCD+K95aLs7zeqLTVtXtHFIDP8EehiM8qZA:AiSzCD+K95aUeqFtXtHwEEehig

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks whether UAC is enabled

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks