Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

f41164b103...39.exe

windows7-x64

7

f41164b103...39.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f41164b103c6c686792b4b6a737a3418ee2a3ad4a73b7d1472b133ba0ad91539

  • Size

    1.1MB

  • Sample

    221127-qcv8jaab38

  • MD5

    fd8630d7372a1a43cbc5d032af138c90

  • SHA1

    c02a5e4e0eb3e2acd06813e215a589dfc880bf48

  • SHA256

    f41164b103c6c686792b4b6a737a3418ee2a3ad4a73b7d1472b133ba0ad91539

  • SHA512

    d05179163c8a784801a987eeb4bb56f4af025ec913c9e3aa6e09573b9fee97ad4b4a4c7e6ba6640a9edb5b30fa49c63ce6a3e7e648f1008bb3f0347f84c75b0e

  • SSDEEP

    24576:iPG8EA2isNtNV++7K/czm0KqIAWUs3JIHphl3JOi:iPpsxVfG0SVlU+SlIi

Score
7/10

Malware Config

Targets

    • Target

      f41164b103c6c686792b4b6a737a3418ee2a3ad4a73b7d1472b133ba0ad91539

    • Size

      1.1MB

    • MD5

      fd8630d7372a1a43cbc5d032af138c90

    • SHA1

      c02a5e4e0eb3e2acd06813e215a589dfc880bf48

    • SHA256

      f41164b103c6c686792b4b6a737a3418ee2a3ad4a73b7d1472b133ba0ad91539

    • SHA512

      d05179163c8a784801a987eeb4bb56f4af025ec913c9e3aa6e09573b9fee97ad4b4a4c7e6ba6640a9edb5b30fa49c63ce6a3e7e648f1008bb3f0347f84c75b0e

    • SSDEEP

      24576:iPG8EA2isNtNV++7K/czm0KqIAWUs3JIHphl3JOi:iPpsxVfG0SVlU+SlIi

    Score
    7/10

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks