Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0a605a253719deb765f8734f76b2f33a78cbe5ddd37013e368d422e3933978d7

  • Size

    512KB

  • Sample

    221127-2mgnnsdh59

  • MD5

    e8c57f77cc9b3a011c8f01041da88a40

  • SHA1

    1fa00900372a5fd1492395efd749c039e96efab1

  • SHA256

    0a605a253719deb765f8734f76b2f33a78cbe5ddd37013e368d422e3933978d7

  • SHA512

    e9af0f5109b7ff04ab036ba4ebb1e22b4e1551b620b407ea26bd594b62541a14cc464cb2cab122f3e76a6e62e7e3cf2b1b1f8f02a2104efa9ddf14ec91ad455b

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4q:0+h9OY70z+warul3E4q

Score
9/10

Malware Config

Targets

    • Target

      0a605a253719deb765f8734f76b2f33a78cbe5ddd37013e368d422e3933978d7

    • Size

      512KB

    • MD5

      e8c57f77cc9b3a011c8f01041da88a40

    • SHA1

      1fa00900372a5fd1492395efd749c039e96efab1

    • SHA256

      0a605a253719deb765f8734f76b2f33a78cbe5ddd37013e368d422e3933978d7

    • SHA512

      e9af0f5109b7ff04ab036ba4ebb1e22b4e1551b620b407ea26bd594b62541a14cc464cb2cab122f3e76a6e62e7e3cf2b1b1f8f02a2104efa9ddf14ec91ad455b

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4q:0+h9OY70z+warul3E4q

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks