Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52

  • Size

    3.4MB

  • Sample

    221127-e8bm8aac23

  • MD5

    10a069efe25fa1bf581659670b0722fb

  • SHA1

    c688024e6ca69d15d8759c6b88f0b764956bde04

  • SHA256

    d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52

  • SHA512

    fc42dd7b3f1ef05deb60fc2f4d9e81e26d41b66a07a50027a377242c73c432d35d4787f523d79abc32d23f1961fbd05cfc8ebba45efaab698b64bfd663036365

  • SSDEEP

    98304:UtE/+2Fd7n0SsezbMuh03MP7vOyEmYaxR97Ttyd6tPfSuBaO:mC75sezp03uv9HtR97IuCc

Score
9/10

Malware Config

Targets

    • Target

      d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52

    • Size

      3.4MB

    • MD5

      10a069efe25fa1bf581659670b0722fb

    • SHA1

      c688024e6ca69d15d8759c6b88f0b764956bde04

    • SHA256

      d67164b5fc13a23ed050ca1dd1a820aa3ef87b52e82c9d4f3215b24058944c52

    • SHA512

      fc42dd7b3f1ef05deb60fc2f4d9e81e26d41b66a07a50027a377242c73c432d35d4787f523d79abc32d23f1961fbd05cfc8ebba45efaab698b64bfd663036365

    • SSDEEP

      98304:UtE/+2Fd7n0SsezbMuh03MP7vOyEmYaxR97Ttyd6tPfSuBaO:mC75sezp03uv9HtR97IuCc

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks