Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937
-
Size
614KB
-
Sample
221127-kfpx2acf58
-
MD5
2cbeae6d66228a6b3de8d34b49a7c00f
-
SHA1
ecddb85a010ae7594d89f85c9c3d827711b6a3fe
-
SHA256
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937
-
SHA512
2209e0f38e4416303c26ab6317e612e245502fdc7e4f7d56e646ccccba83a5a6abd228947c7a1b54e2b2ece17e610cca5cd4c4a25a23d493e9c0b791e6dc200e
-
SSDEEP
12288:UYRN6Ul2gavsFJZC42Bu0aHpdjzwJ4baLN+gZPNOcmVuSR3O9cubDA:HKUl2wFJZCRBu0KA8VAnmVugubDA
Static task
static1
Behavioral task
behavioral1
Sample
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937
-
Size
614KB
-
MD5
2cbeae6d66228a6b3de8d34b49a7c00f
-
SHA1
ecddb85a010ae7594d89f85c9c3d827711b6a3fe
-
SHA256
92e97f9a5a1df142286f39f077da81ea59d981e955901dfb37defb5186d60937
-
SHA512
2209e0f38e4416303c26ab6317e612e245502fdc7e4f7d56e646ccccba83a5a6abd228947c7a1b54e2b2ece17e610cca5cd4c4a25a23d493e9c0b791e6dc200e
-
SSDEEP
12288:UYRN6Ul2gavsFJZC42Bu0aHpdjzwJ4baLN+gZPNOcmVuSR3O9cubDA:HKUl2wFJZCRBu0KA8VAnmVugubDA
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-