Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b61f8fe03964e464e6cd474cc8848b2f92a3a7fd8e3b9ca6f3890d39d5087184

  • Size

    935KB

  • Sample

    221125-kx51ksad3w

  • MD5

    4371094f3f80b1e60eddfe829f06b871

  • SHA1

    92d177dd8e1750649c43e45f6167241e4eef640b

  • SHA256

    b61f8fe03964e464e6cd474cc8848b2f92a3a7fd8e3b9ca6f3890d39d5087184

  • SHA512

    3706db256ad42476001413714aac37e6e54b1d645e7709cad85b70597428d6a829aa12fbac49248cc98da6d0b3d4761ba5f8e9e9e158719939e5c428ceea4f85

  • SSDEEP

    12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4v:JyHv5Z+Wzv7AiBll0OBWi6si9GG

Score
8/10
upx

Malware Config

Targets

    • Target

      b61f8fe03964e464e6cd474cc8848b2f92a3a7fd8e3b9ca6f3890d39d5087184

    • Size

      935KB

    • MD5

      4371094f3f80b1e60eddfe829f06b871

    • SHA1

      92d177dd8e1750649c43e45f6167241e4eef640b

    • SHA256

      b61f8fe03964e464e6cd474cc8848b2f92a3a7fd8e3b9ca6f3890d39d5087184

    • SHA512

      3706db256ad42476001413714aac37e6e54b1d645e7709cad85b70597428d6a829aa12fbac49248cc98da6d0b3d4761ba5f8e9e9e158719939e5c428ceea4f85

    • SSDEEP

      12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4v:JyHv5Z+Wzv7AiBll0OBWi6si9GG

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks