Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    53004488234f32fb29e62f5243be4a50155d2ed3fcba9ad031c335456cd2f0bd

  • Size

    512KB

  • Sample

    221127-2hwxsshe3v

  • MD5

    f457594ef9a95458774f05b0c88a2380

  • SHA1

    3163990e0f0e00d2cf2033dbbc19e57c75df36bb

  • SHA256

    53004488234f32fb29e62f5243be4a50155d2ed3fcba9ad031c335456cd2f0bd

  • SHA512

    2fd1773925c76132ff98ac98d325336b584f927903fb11e08f3dd9250f2f5ad34335edaa81ff68378976d8ac9f62ded7310c1bd974940003c58db58b12c0573a

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E47:0+h9OY70z+warul3E47

Score
9/10

Malware Config

Targets

    • Target

      53004488234f32fb29e62f5243be4a50155d2ed3fcba9ad031c335456cd2f0bd

    • Size

      512KB

    • MD5

      f457594ef9a95458774f05b0c88a2380

    • SHA1

      3163990e0f0e00d2cf2033dbbc19e57c75df36bb

    • SHA256

      53004488234f32fb29e62f5243be4a50155d2ed3fcba9ad031c335456cd2f0bd

    • SHA512

      2fd1773925c76132ff98ac98d325336b584f927903fb11e08f3dd9250f2f5ad34335edaa81ff68378976d8ac9f62ded7310c1bd974940003c58db58b12c0573a

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E47:0+h9OY70z+warul3E47

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks