Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

d04c346ff6...65.exe

windows7-x64

9

d04c346ff6...65.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d04c346ff6d81711555311c909a7af1eb9b077014a58cb607a4490b9ba352465

  • Size

    614KB

  • Sample

    221127-js35rabb67

  • MD5

    ec1f7ae1c76bf0e00a1df1017c9b54e7

  • SHA1

    b5f31088806dc13b4031eccb2c3ccd7c258ed6f0

  • SHA256

    d04c346ff6d81711555311c909a7af1eb9b077014a58cb607a4490b9ba352465

  • SHA512

    2c8409c7c17e22feebefe942c9f18cb698de2ce0d0b339d2448882bb23d5221a0c82c988dd70d8c3a9e836022c225649274d3ceba7fbf7f08915ddeb8edb43cf

  • SSDEEP

    12288:UYRN6Ul2gavsFJZC42Bu0aHpdjzwJ4baLN+gZPNOcmVuSR3O9cubD5:HKUl2wFJZCRBu0KA8VAnmVugubD5

Score
9/10
evasion

Malware Config

Targets

    • Target

      d04c346ff6d81711555311c909a7af1eb9b077014a58cb607a4490b9ba352465

    • Size

      614KB

    • MD5

      ec1f7ae1c76bf0e00a1df1017c9b54e7

    • SHA1

      b5f31088806dc13b4031eccb2c3ccd7c258ed6f0

    • SHA256

      d04c346ff6d81711555311c909a7af1eb9b077014a58cb607a4490b9ba352465

    • SHA512

      2c8409c7c17e22feebefe942c9f18cb698de2ce0d0b339d2448882bb23d5221a0c82c988dd70d8c3a9e836022c225649274d3ceba7fbf7f08915ddeb8edb43cf

    • SSDEEP

      12288:UYRN6Ul2gavsFJZC42Bu0aHpdjzwJ4baLN+gZPNOcmVuSR3O9cubD5:HKUl2wFJZCRBu0KA8VAnmVugubD5

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks