Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    024df1a18fe2fb44caa8989dd2952000d66cd4fdbd82ecf54cab19abe351fa8f

  • Size

    935KB

  • Sample

    221125-t89mksbc82

  • MD5

    295e57437858e837d6435ae6b3681e6c

  • SHA1

    8ab6ce20ba174063dc525b6142d3046e4addcd18

  • SHA256

    024df1a18fe2fb44caa8989dd2952000d66cd4fdbd82ecf54cab19abe351fa8f

  • SHA512

    0f8ca64e03265948e5f05c51d926106a878f49711de9e2da339c0a5e4b975c7f67cf0fafdfced3594f9b1d3f426d5c10ba6d8db3c16673cecf0ef9c406477ad3

  • SSDEEP

    12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:pyHv5Z+Wzv7AiBll0OBWi6si9G

Score
8/10
upx

Malware Config

Targets

    • Target

      024df1a18fe2fb44caa8989dd2952000d66cd4fdbd82ecf54cab19abe351fa8f

    • Size

      935KB

    • MD5

      295e57437858e837d6435ae6b3681e6c

    • SHA1

      8ab6ce20ba174063dc525b6142d3046e4addcd18

    • SHA256

      024df1a18fe2fb44caa8989dd2952000d66cd4fdbd82ecf54cab19abe351fa8f

    • SHA512

      0f8ca64e03265948e5f05c51d926106a878f49711de9e2da339c0a5e4b975c7f67cf0fafdfced3594f9b1d3f426d5c10ba6d8db3c16673cecf0ef9c406477ad3

    • SSDEEP

      12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:pyHv5Z+Wzv7AiBll0OBWi6si9G

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks