Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09
-
Size
512KB
-
Sample
221127-s7whwsdb7t
-
MD5
7ada250e49797907b986dd6ff17aafce
-
SHA1
3109ead10f37dde6f824c3c1c7843dd012520f3c
-
SHA256
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09
-
SHA512
5488f1ccc85a6114b12e5affcf4fdf1a4354e9355ba2d2011d6a781ca7d1ae516431d4d0877ea106b3f41f7e5c8cf6638566d02964bd2b0e737c43869f3b1a16
-
SSDEEP
12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4E:0+h9OY70z+warul3E4E
Static task
static1
Behavioral task
behavioral1
Sample
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09
-
Size
512KB
-
MD5
7ada250e49797907b986dd6ff17aafce
-
SHA1
3109ead10f37dde6f824c3c1c7843dd012520f3c
-
SHA256
9bc7ccdf4ce7413679c2fda656aa278535464db2b4802d6b74f75aa805646d09
-
SHA512
5488f1ccc85a6114b12e5affcf4fdf1a4354e9355ba2d2011d6a781ca7d1ae516431d4d0877ea106b3f41f7e5c8cf6638566d02964bd2b0e737c43869f3b1a16
-
SSDEEP
12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4E:0+h9OY70z+warul3E4E
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-