Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5626f80a93566945ccb7fd6e2dccddca0eb0186aa4f095320a9984e4ad17f39a

  • Size

    935KB

  • Sample

    221125-qbm6jaaa73

  • MD5

    10c05c959599f3d6b2c0b673b074864d

  • SHA1

    ce93cbacfae8f0715b0ff24f07ea3b6e29f3354d

  • SHA256

    5626f80a93566945ccb7fd6e2dccddca0eb0186aa4f095320a9984e4ad17f39a

  • SHA512

    b8d7eed22dade7e578c12b8da70079e19b14c9708f15e9160eddbc2447146aa76b6a74901d45dc03e259229e5dd20ef338365a8ff227bc795222d19eb4db47c0

  • SSDEEP

    12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:pyHv5Z+Wzv7AiBll0OBWi6si9G

Score
8/10
upx

Malware Config

Targets

    • Target

      5626f80a93566945ccb7fd6e2dccddca0eb0186aa4f095320a9984e4ad17f39a

    • Size

      935KB

    • MD5

      10c05c959599f3d6b2c0b673b074864d

    • SHA1

      ce93cbacfae8f0715b0ff24f07ea3b6e29f3354d

    • SHA256

      5626f80a93566945ccb7fd6e2dccddca0eb0186aa4f095320a9984e4ad17f39a

    • SHA512

      b8d7eed22dade7e578c12b8da70079e19b14c9708f15e9160eddbc2447146aa76b6a74901d45dc03e259229e5dd20ef338365a8ff227bc795222d19eb4db47c0

    • SSDEEP

      12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:pyHv5Z+Wzv7AiBll0OBWi6si9G

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks