Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

a1402c8778...03.exe

windows7-x64

9

a1402c8778...03.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1402c8778ac39986a2cd92bc130097a05fe195093ce43789e4d1770d2d7ea03

  • Size

    514KB

  • Sample

    221128-bbj2jsge5w

  • MD5

    e53dc7c7eef9c9dd5486313439b25e17

  • SHA1

    de5bbc80f9a09b0150cbd6aa8e10ef4d291fb1ab

  • SHA256

    a1402c8778ac39986a2cd92bc130097a05fe195093ce43789e4d1770d2d7ea03

  • SHA512

    bc966d96e347922d42d1a46df8aea964b2a985bc9a6b365d35de2483fc0b5dccaaf480029210edd092b3e4a36d82a9ca6db3a28518b7f21b5a7302a6f77fbbe7

  • SSDEEP

    12288:ffv/cSGxdtQnvIIR40X7+u0Zpk2JjAUd19nVRkl:fn/cSa3QAIRRL30x0Ur9nol

Score
9/10
evasion

Malware Config

Targets

    • Target

      a1402c8778ac39986a2cd92bc130097a05fe195093ce43789e4d1770d2d7ea03

    • Size

      514KB

    • MD5

      e53dc7c7eef9c9dd5486313439b25e17

    • SHA1

      de5bbc80f9a09b0150cbd6aa8e10ef4d291fb1ab

    • SHA256

      a1402c8778ac39986a2cd92bc130097a05fe195093ce43789e4d1770d2d7ea03

    • SHA512

      bc966d96e347922d42d1a46df8aea964b2a985bc9a6b365d35de2483fc0b5dccaaf480029210edd092b3e4a36d82a9ca6db3a28518b7f21b5a7302a6f77fbbe7

    • SSDEEP

      12288:ffv/cSGxdtQnvIIR40X7+u0Zpk2JjAUd19nVRkl:fn/cSa3QAIRRL30x0Ur9nol

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks