Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c83323114ea1296ce0ad0edcb772128c3d1d68a9e514a2f78de79de09be5d77f

  • Size

    512KB

  • Sample

    221128-bj5cfsch45

  • MD5

    24505ea9c9e5298302123b68ec3d14ad

  • SHA1

    16141c50776899f6e106a1ac472bd9c6496814f0

  • SHA256

    c83323114ea1296ce0ad0edcb772128c3d1d68a9e514a2f78de79de09be5d77f

  • SHA512

    1485e65587752b6ccb18735e160d2b8322bf6cd0ae79932f0f29f2379412100f7919a931f6ad58f6bf1c2e7b26fe00162529b368975d833242c0d0f783db4b10

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4U:0+h9OY70z+warul3E4U

Score
9/10

Malware Config

Targets

    • Target

      c83323114ea1296ce0ad0edcb772128c3d1d68a9e514a2f78de79de09be5d77f

    • Size

      512KB

    • MD5

      24505ea9c9e5298302123b68ec3d14ad

    • SHA1

      16141c50776899f6e106a1ac472bd9c6496814f0

    • SHA256

      c83323114ea1296ce0ad0edcb772128c3d1d68a9e514a2f78de79de09be5d77f

    • SHA512

      1485e65587752b6ccb18735e160d2b8322bf6cd0ae79932f0f29f2379412100f7919a931f6ad58f6bf1c2e7b26fe00162529b368975d833242c0d0f783db4b10

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4U:0+h9OY70z+warul3E4U

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks