Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1db6f9ab31dd63a2985c1dea412a3d5d43f5268428015babe7c8238853701b84

  • Size

    935KB

  • Sample

    221125-sxm4rsbe8w

  • MD5

    b2796d13ffed78f306769dcebac7c685

  • SHA1

    18f46e9327b1714947d189ab5a6fb6afa2f51d12

  • SHA256

    1db6f9ab31dd63a2985c1dea412a3d5d43f5268428015babe7c8238853701b84

  • SHA512

    cab7fc90a589d4313ecdb3784a41fb372720a446616fc33c6d9edc4b87b3c5e0e66543c9bf2e3bf341dde1c36d0509c55dade85e45dfea5017af43935e59ae0d

  • SSDEEP

    12288:Z5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4/:ZyHv5Z+Wzv7AiBll0OBWi6si9GO

Score
8/10
upx

Malware Config

Targets

    • Target

      1db6f9ab31dd63a2985c1dea412a3d5d43f5268428015babe7c8238853701b84

    • Size

      935KB

    • MD5

      b2796d13ffed78f306769dcebac7c685

    • SHA1

      18f46e9327b1714947d189ab5a6fb6afa2f51d12

    • SHA256

      1db6f9ab31dd63a2985c1dea412a3d5d43f5268428015babe7c8238853701b84

    • SHA512

      cab7fc90a589d4313ecdb3784a41fb372720a446616fc33c6d9edc4b87b3c5e0e66543c9bf2e3bf341dde1c36d0509c55dade85e45dfea5017af43935e59ae0d

    • SSDEEP

      12288:Z5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4/:ZyHv5Z+Wzv7AiBll0OBWi6si9GO

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks