Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    09803c508cc7a9aa1015b8c65c38068f026059d43624d925010a04f328098e7d

  • Size

    935KB

  • Sample

    221125-twn54sag99

  • MD5

    009a8d3637c67786b5de498261dd9ea1

  • SHA1

    a4c3ba88a40a4858c361518dd4b4b0cf4cc2b405

  • SHA256

    09803c508cc7a9aa1015b8c65c38068f026059d43624d925010a04f328098e7d

  • SHA512

    2380117b90703450b5ced7142cefce112943935c72c3ccef9038b5cc8b0273db6b06a7abfbefa73bc7c9a7b28ac2d02fdbbb6776de31dccd97834d5ceef71e67

  • SSDEEP

    12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4u:IyHv5Z+Wzv7AiBll0OBWi6si9GD

Score
8/10
upx

Malware Config

Targets

    • Target

      09803c508cc7a9aa1015b8c65c38068f026059d43624d925010a04f328098e7d

    • Size

      935KB

    • MD5

      009a8d3637c67786b5de498261dd9ea1

    • SHA1

      a4c3ba88a40a4858c361518dd4b4b0cf4cc2b405

    • SHA256

      09803c508cc7a9aa1015b8c65c38068f026059d43624d925010a04f328098e7d

    • SHA512

      2380117b90703450b5ced7142cefce112943935c72c3ccef9038b5cc8b0273db6b06a7abfbefa73bc7c9a7b28ac2d02fdbbb6776de31dccd97834d5ceef71e67

    • SSDEEP

      12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4u:IyHv5Z+Wzv7AiBll0OBWi6si9GD

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks