Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b
-
Size
512KB
-
Sample
221128-ht4l8sdg37
-
MD5
93ce0fd2d6e6d5ddb1cb09ed318df78c
-
SHA1
b4fefc4b91e8df278f6f8123da8b19477bdfdc8c
-
SHA256
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b
-
SHA512
e879000293b9b16bb3e4a3e9676a7abebd93253561e6e3931ec1fe00c984ccc6b8bc104b12fd635016e3ad7afcb3106c98d55a6263c69567f108853bb1114131
-
SSDEEP
12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4v:0+h9OY70z+warul3E4v
Static task
static1
Behavioral task
behavioral1
Sample
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b
-
Size
512KB
-
MD5
93ce0fd2d6e6d5ddb1cb09ed318df78c
-
SHA1
b4fefc4b91e8df278f6f8123da8b19477bdfdc8c
-
SHA256
c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b
-
SHA512
e879000293b9b16bb3e4a3e9676a7abebd93253561e6e3931ec1fe00c984ccc6b8bc104b12fd635016e3ad7afcb3106c98d55a6263c69567f108853bb1114131
-
SSDEEP
12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4v:0+h9OY70z+warul3E4v
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-