Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52
-
Size
3.4MB
-
Sample
221127-e8bm8aac23
-
MD5
10a069efe25fa1bf581659670b0722fb
-
SHA1
c688024e6ca69d15d8759c6b88f0b764956bde04
-
SHA256
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52
-
SHA512
fc42dd7b3f1ef05deb60fc2f4d9e81e26d41b66a07a50027a377242c73c432d35d4787f523d79abc32d23f1961fbd05cfc8ebba45efaab698b64bfd663036365
-
SSDEEP
98304:UtE/+2Fd7n0SsezbMuh03MP7vOyEmYaxR97Ttyd6tPfSuBaO:mC75sezp03uv9HtR97IuCc
Static task
static1
Behavioral task
behavioral1
Sample
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52
-
Size
3.4MB
-
MD5
10a069efe25fa1bf581659670b0722fb
-
SHA1
c688024e6ca69d15d8759c6b88f0b764956bde04
-
SHA256
d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52
-
SHA512
fc42dd7b3f1ef05deb60fc2f4d9e81e26d41b66a07a50027a377242c73c432d35d4787f523d79abc32d23f1961fbd05cfc8ebba45efaab698b64bfd663036365
-
SSDEEP
98304:UtE/+2Fd7n0SsezbMuh03MP7vOyEmYaxR97Ttyd6tPfSuBaO:mC75sezp03uv9HtR97IuCc
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-