Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

9bc7ccdf4c...09.exe

windows7-x64

9

9bc7ccdf4c...09.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09

  • Size

    512KB

  • Sample

    221127-s7whwsdb7t

  • MD5

    7ada250e49797907b986dd6ff17aafce

  • SHA1

    3109ead10f37dde6f824c3c1c7843dd012520f3c

  • SHA256

    9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09

  • SHA512

    5488f1ccc85a6114b12e5affcf4fdf1a4354e9355ba2d2011d6a781ca7d1ae516431d4d0877ea106b3f41f7e5c8cf6638566d02964bd2b0e737c43869f3b1a16

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4E:0+h9OY70z+warul3E4E

Score
9/10
evasion

Malware Config

Targets

    • Target

      9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09

    • Size

      512KB

    • MD5

      7ada250e49797907b986dd6ff17aafce

    • SHA1

      3109ead10f37dde6f824c3c1c7843dd012520f3c

    • SHA256

      9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09

    • SHA512

      5488f1ccc85a6114b12e5affcf4fdf1a4354e9355ba2d2011d6a781ca7d1ae516431d4d0877ea106b3f41f7e5c8cf6638566d02964bd2b0e737c43869f3b1a16

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4E:0+h9OY70z+warul3E4E

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks