Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b

  • Size

    512KB

  • Sample

    221128-ht4l8sdg37

  • MD5

    93ce0fd2d6e6d5ddb1cb09ed318df78c

  • SHA1

    b4fefc4b91e8df278f6f8123da8b19477bdfdc8c

  • SHA256

    c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b

  • SHA512

    e879000293b9b16bb3e4a3e9676a7abebd93253561e6e3931ec1fe00c984ccc6b8bc104b12fd635016e3ad7afcb3106c98d55a6263c69567f108853bb1114131

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4v:0+h9OY70z+warul3E4v

Score
9/10

Malware Config

Targets

    • Target

      c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b

    • Size

      512KB

    • MD5

      93ce0fd2d6e6d5ddb1cb09ed318df78c

    • SHA1

      b4fefc4b91e8df278f6f8123da8b19477bdfdc8c

    • SHA256

      c96d4d0aaa1167e7d8f7e2c4821617175a59c76761987487a6bb51302d5b687b

    • SHA512

      e879000293b9b16bb3e4a3e9676a7abebd93253561e6e3931ec1fe00c984ccc6b8bc104b12fd635016e3ad7afcb3106c98d55a6263c69567f108853bb1114131

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4v:0+h9OY70z+warul3E4v

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks