Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dbeee7cfed431fcf31a848f1a22dc557ab7c93ceae1936b7338397ed107b26bc

  • Size

    512KB

  • Sample

    221128-bqpwcadc77

  • MD5

    478e79f332cd221cb8265951018b29dc

  • SHA1

    716c64d195d40eafe16864c4349e35989841a9f7

  • SHA256

    dbeee7cfed431fcf31a848f1a22dc557ab7c93ceae1936b7338397ed107b26bc

  • SHA512

    3a28536c5dfeccc6690e2375c07c64091f347acd1e41c18156dd7367a24184f31842c7dbd92762ead5c6f6348b93ec22a9f125754f07c3cf3044c6d6bfae6a0a

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4K:0+h9OY70z+warul3E4K

Score
9/10

Malware Config

Targets

    • Target

      dbeee7cfed431fcf31a848f1a22dc557ab7c93ceae1936b7338397ed107b26bc

    • Size

      512KB

    • MD5

      478e79f332cd221cb8265951018b29dc

    • SHA1

      716c64d195d40eafe16864c4349e35989841a9f7

    • SHA256

      dbeee7cfed431fcf31a848f1a22dc557ab7c93ceae1936b7338397ed107b26bc

    • SHA512

      3a28536c5dfeccc6690e2375c07c64091f347acd1e41c18156dd7367a24184f31842c7dbd92762ead5c6f6348b93ec22a9f125754f07c3cf3044c6d6bfae6a0a

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4K:0+h9OY70z+warul3E4K

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks