Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

40c2579850...2c.exe

windows7-x64

9

40c2579850...2c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40c2579850d73677938dbf0db7775789bc1018cf0fae47ea2de6633fb35efd2c

  • Size

    618KB

  • Sample

    221127-l1qkqsgh36

  • MD5

    7d0051408a4d4455fac0a9e81ff8917b

  • SHA1

    50d6aa7d3ead6c57f9d40537e3ba2e597b0bbd80

  • SHA256

    40c2579850d73677938dbf0db7775789bc1018cf0fae47ea2de6633fb35efd2c

  • SHA512

    9e94eb6a8833bf3b59443ced17b58515cfee2665fd4007f9483dd4eba1be761468c8547f455be8a4e03cceae6104a6484cd6b2d4e46be3634a22f2f492158ec7

  • SSDEEP

    12288:yKfC2/WC5btCQFxZITbejP27e73Rrx8FkWIGoC3tXkg/DKWO4g8CXdpYiY+1:K2/W0NDZ/b6uumGpdXkg/DKWOj8C8iYO

Score
9/10
evasion

Malware Config

Targets

    • Target

      40c2579850d73677938dbf0db7775789bc1018cf0fae47ea2de6633fb35efd2c

    • Size

      618KB

    • MD5

      7d0051408a4d4455fac0a9e81ff8917b

    • SHA1

      50d6aa7d3ead6c57f9d40537e3ba2e597b0bbd80

    • SHA256

      40c2579850d73677938dbf0db7775789bc1018cf0fae47ea2de6633fb35efd2c

    • SHA512

      9e94eb6a8833bf3b59443ced17b58515cfee2665fd4007f9483dd4eba1be761468c8547f455be8a4e03cceae6104a6484cd6b2d4e46be3634a22f2f492158ec7

    • SSDEEP

      12288:yKfC2/WC5btCQFxZITbejP27e73Rrx8FkWIGoC3tXkg/DKWO4g8CXdpYiY+1:K2/W0NDZ/b6uumGpdXkg/DKWOj8C8iYO

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks