Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cb862b14f63223089cc13ca62444c8ea2a4cd0f50a0df32d1dccd956e9dd5269

  • Size

    512KB

  • Sample

    221127-zymyqahe42

  • MD5

    280fb12a2138dac4b56e623e96dbfb6e

  • SHA1

    20b8747a098f079b654254b12675ad8b736148ac

  • SHA256

    cb862b14f63223089cc13ca62444c8ea2a4cd0f50a0df32d1dccd956e9dd5269

  • SHA512

    fdef5efd8ca68a500984018624a113740d128792ac2cb126abb5e1b74d1230c811df5a18aea23e9e3faf2fd5356e715f41eb7dfbf6e453b03b02dbfd751c7157

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4a:0+h9OY70z+warul3E4a

Score
9/10

Malware Config

Targets

    • Target

      cb862b14f63223089cc13ca62444c8ea2a4cd0f50a0df32d1dccd956e9dd5269

    • Size

      512KB

    • MD5

      280fb12a2138dac4b56e623e96dbfb6e

    • SHA1

      20b8747a098f079b654254b12675ad8b736148ac

    • SHA256

      cb862b14f63223089cc13ca62444c8ea2a4cd0f50a0df32d1dccd956e9dd5269

    • SHA512

      fdef5efd8ca68a500984018624a113740d128792ac2cb126abb5e1b74d1230c811df5a18aea23e9e3faf2fd5356e715f41eb7dfbf6e453b03b02dbfd751c7157

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4a:0+h9OY70z+warul3E4a

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks