Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

bc5cb5bc28...50.exe

windows7-x64

9

bc5cb5bc28...50.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc5cb5bc28b7ee5db1337a31b8a973b9d15031d640d60430addf18fcdc640550

  • Size

    512KB

  • Sample

    221128-atzz2sfb61

  • MD5

    da9b8ae03af8e49be69b166dee84dd81

  • SHA1

    30012035ead197eafcf2cee9db37c6ad7b59d686

  • SHA256

    bc5cb5bc28b7ee5db1337a31b8a973b9d15031d640d60430addf18fcdc640550

  • SHA512

    1e0c2cc4d40f49e5c0a22adf7e52c60b7b7c640415c16761519d32e93ce8f729176a2a20f59936869ff8d03b6f37b3f79f91c1386b2ff410b55367dbfdf8c854

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4f:0+h9OY70z+warul3E4f

Score
9/10
evasion

Malware Config

Targets

    • Target

      bc5cb5bc28b7ee5db1337a31b8a973b9d15031d640d60430addf18fcdc640550

    • Size

      512KB

    • MD5

      da9b8ae03af8e49be69b166dee84dd81

    • SHA1

      30012035ead197eafcf2cee9db37c6ad7b59d686

    • SHA256

      bc5cb5bc28b7ee5db1337a31b8a973b9d15031d640d60430addf18fcdc640550

    • SHA512

      1e0c2cc4d40f49e5c0a22adf7e52c60b7b7c640415c16761519d32e93ce8f729176a2a20f59936869ff8d03b6f37b3f79f91c1386b2ff410b55367dbfdf8c854

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4f:0+h9OY70z+warul3E4f

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks