Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
40s -
max time network
43s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
10/10/2022, 04:22
Static task
static1
Behavioral task
behavioral1
Sample
Installer_迅捷OCR文字识别_r1.7.4.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Installer_迅捷OCR文字识别_r1.7.4.exe
Resource
win10v2004-20220812-en
Behavioral task
behavioral3
Sample
更多系统软件下载.html
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
更多系统软件下载.html
Resource
win10v2004-20220901-en
General
-
Target
Installer_迅捷OCR文字识别_r1.7.4.exe
-
Size
3.7MB
-
MD5
0f66fcf0f98d120262dcc61684e9317d
-
SHA1
5d7c212866919ec82d82c1749ce266affb0ad974
-
SHA256
4c1454d5f7090c6fab06df485a87214add594889e803242ff573745fa8a6b3db
-
SHA512
91570e36a6d0124b871a1365eb41ffc7f8ca63ed7abdb829aa63568bbe77e5fcaaa030cbb13255bc2c1df15f46b3cd3679e8b3a031f9f761b89723638d90a2cc
-
SSDEEP
49152:fz35sKs5ErWcfoBzAT6VqIx5hAsHSJkzSyarz7FWorGhT5V+rSnOukY:b53lfoBNq0hAsevfsNVxO+
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.