Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7132e379b0842d3377aed69bfa971324ab697ecc6242607b741789a441abb90c

  • Size

    512KB

  • Sample

    221128-adaefsdh9x

  • MD5

    15e67f4534ba2479202a8151975872c8

  • SHA1

    2178b95fd16ff3b44aa8cbe595b1e15ea3794fff

  • SHA256

    7132e379b0842d3377aed69bfa971324ab697ecc6242607b741789a441abb90c

  • SHA512

    00ee3b4a51c9a86cd30cfbd165476557bd94985f2496e0ca6025ab9176f0a809425c4af18172d37e757e7de9a310bbaaa881f8853163e56f10de8703472a3772

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4S:0+h9OY70z+warul3E4S

Score
9/10

Malware Config

Targets

    • Target

      7132e379b0842d3377aed69bfa971324ab697ecc6242607b741789a441abb90c

    • Size

      512KB

    • MD5

      15e67f4534ba2479202a8151975872c8

    • SHA1

      2178b95fd16ff3b44aa8cbe595b1e15ea3794fff

    • SHA256

      7132e379b0842d3377aed69bfa971324ab697ecc6242607b741789a441abb90c

    • SHA512

      00ee3b4a51c9a86cd30cfbd165476557bd94985f2496e0ca6025ab9176f0a809425c4af18172d37e757e7de9a310bbaaa881f8853163e56f10de8703472a3772

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4S:0+h9OY70z+warul3E4S

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks