Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    88fcedda19462881f0314f927e81b6ede610a5c5dd36d72f28a0335df2a34db6

  • Size

    512KB

  • Sample

    221128-aj3m7aac22

  • MD5

    e4e4abaac6031a28d6b6afaf3669a3e9

  • SHA1

    dc50988680af25d9a7a890d31bcbcb599426fc5c

  • SHA256

    88fcedda19462881f0314f927e81b6ede610a5c5dd36d72f28a0335df2a34db6

  • SHA512

    402f05e49ced0ad0e78def239514855ac6b5e6c6049238db5e6847fbd5e08723b0ffa4e7461817b42fff3e7557615b8f9cccc8935b076fbcf85655a4f0658ba0

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4o:0+h9OY70z+warul3E4o

Score
9/10

Malware Config

Targets

    • Target

      88fcedda19462881f0314f927e81b6ede610a5c5dd36d72f28a0335df2a34db6

    • Size

      512KB

    • MD5

      e4e4abaac6031a28d6b6afaf3669a3e9

    • SHA1

      dc50988680af25d9a7a890d31bcbcb599426fc5c

    • SHA256

      88fcedda19462881f0314f927e81b6ede610a5c5dd36d72f28a0335df2a34db6

    • SHA512

      402f05e49ced0ad0e78def239514855ac6b5e6c6049238db5e6847fbd5e08723b0ffa4e7461817b42fff3e7557615b8f9cccc8935b076fbcf85655a4f0658ba0

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4o:0+h9OY70z+warul3E4o

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks