Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    27cebec5933cba8caec98c6a01f2a2ab99040ba5582e380c5f24e00cdc7ba57c

  • Size

    935KB

  • Sample

    221125-sgdv6afc65

  • MD5

    72a565f6432acd586d3c9ca44b8292b4

  • SHA1

    14d70520734e434dcef2578867e3ab9083a60be3

  • SHA256

    27cebec5933cba8caec98c6a01f2a2ab99040ba5582e380c5f24e00cdc7ba57c

  • SHA512

    3389340ce78494ca71318293a92123b0f8f6aebebe2602501b3642b26fd08472c2f98ded44c6d5e51f7a2e8a2f5ecf6ac4560e6da929c07f0dd74d4ecc3c88e4

  • SSDEEP

    12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:JyHv5Z+Wzv7AiBll0OBWi6si9G

Score
8/10
upx

Malware Config

Targets

    • Target

      27cebec5933cba8caec98c6a01f2a2ab99040ba5582e380c5f24e00cdc7ba57c

    • Size

      935KB

    • MD5

      72a565f6432acd586d3c9ca44b8292b4

    • SHA1

      14d70520734e434dcef2578867e3ab9083a60be3

    • SHA256

      27cebec5933cba8caec98c6a01f2a2ab99040ba5582e380c5f24e00cdc7ba57c

    • SHA512

      3389340ce78494ca71318293a92123b0f8f6aebebe2602501b3642b26fd08472c2f98ded44c6d5e51f7a2e8a2f5ecf6ac4560e6da929c07f0dd74d4ecc3c88e4

    • SSDEEP

      12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:JyHv5Z+Wzv7AiBll0OBWi6si9G

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks