Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2089b91a01042549609babfa3e7c9e4bc8ba2dd2384b23320ee499d6bbb2d58a

  • Size

    935KB

  • Sample

    221125-ssk4lsbc4x

  • MD5

    8de8da6bceac469a29ef6c0c12ffb146

  • SHA1

    1b54b7d59ef4152a326c01d2776e64727d9df725

  • SHA256

    2089b91a01042549609babfa3e7c9e4bc8ba2dd2384b23320ee499d6bbb2d58a

  • SHA512

    85bdbd10f3aab5159ea055b647fa53f5742fcaa55218f7822eea5483c99cafcafe55ed79a14e74ba2704f75cf33153970096449e09e917c4ebb34e8ff20bc759

  • SSDEEP

    12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x43:IyHv5Z+Wzv7AiBll0OBWi6si9Gm

Score
8/10
upx

Malware Config

Targets

    • Target

      2089b91a01042549609babfa3e7c9e4bc8ba2dd2384b23320ee499d6bbb2d58a

    • Size

      935KB

    • MD5

      8de8da6bceac469a29ef6c0c12ffb146

    • SHA1

      1b54b7d59ef4152a326c01d2776e64727d9df725

    • SHA256

      2089b91a01042549609babfa3e7c9e4bc8ba2dd2384b23320ee499d6bbb2d58a

    • SHA512

      85bdbd10f3aab5159ea055b647fa53f5742fcaa55218f7822eea5483c99cafcafe55ed79a14e74ba2704f75cf33153970096449e09e917c4ebb34e8ff20bc759

    • SSDEEP

      12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x43:IyHv5Z+Wzv7AiBll0OBWi6si9Gm

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks