Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a
-
Size
514KB
-
Sample
221127-zqhn2agh72
-
MD5
909c4b8eb249747c95ea590c3cd30f4f
-
SHA1
170cce9a237d9f01fb37c2c85f662df2ce58b021
-
SHA256
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a
-
SHA512
4230da158bed282cb08fc89e011a2545fbab73fd105f5b124378b3d028fedfed0ef7318a8f204ff35e6df6a2c2cd40f143bf80f2e7ffa722019bed68ecb556d1
-
SSDEEP
12288:ffv/cSGxdtQnvIIR40X7+u0Zpk2JjAUd19nVRk5:fn/cSa3QAIRRL30x0Ur9no5
Static task
static1
Behavioral task
behavioral1
Sample
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a
-
Size
514KB
-
MD5
909c4b8eb249747c95ea590c3cd30f4f
-
SHA1
170cce9a237d9f01fb37c2c85f662df2ce58b021
-
SHA256
12e15b513b3b6d0f73a209aacf43d241bc66df2d5dd9f146b5d96393b615852a
-
SHA512
4230da158bed282cb08fc89e011a2545fbab73fd105f5b124378b3d028fedfed0ef7318a8f204ff35e6df6a2c2cd40f143bf80f2e7ffa722019bed68ecb556d1
-
SSDEEP
12288:ffv/cSGxdtQnvIIR40X7+u0Zpk2JjAUd19nVRk5:fn/cSa3QAIRRL30x0Ur9no5
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-