Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

744de75df6...eb.exe

windows7-x64

9

744de75df6...eb.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    744de75df602abe008bda830f8343b9af530ee62763d7525ac86403038d5b1eb

  • Size

    897KB

  • Sample

    221201-dq9xmaaa32

  • MD5

    8c0de0256142e6c494b02630cdf0b667

  • SHA1

    91c6377097f4681d7b1f1a5dfce1a95865f30324

  • SHA256

    744de75df602abe008bda830f8343b9af530ee62763d7525ac86403038d5b1eb

  • SHA512

    781cda77d387c5c55291d55a8ae9e49560d4ec0006e3c02b7e4fdb9ca674e2546be395256afef76dd603457a18dd741afbc83045ecabd2a181a9720394f23646

  • SSDEEP

    24576:o5f0X77Gu9o9UpgWoaYQ/ObNshEOQJ+riG:u1u9fvPYSGN6ErJq

Score
9/10
evasionupx

Malware Config

Targets

    • Target

      744de75df602abe008bda830f8343b9af530ee62763d7525ac86403038d5b1eb

    • Size

      897KB

    • MD5

      8c0de0256142e6c494b02630cdf0b667

    • SHA1

      91c6377097f4681d7b1f1a5dfce1a95865f30324

    • SHA256

      744de75df602abe008bda830f8343b9af530ee62763d7525ac86403038d5b1eb

    • SHA512

      781cda77d387c5c55291d55a8ae9e49560d4ec0006e3c02b7e4fdb9ca674e2546be395256afef76dd603457a18dd741afbc83045ecabd2a181a9720394f23646

    • SSDEEP

      24576:o5f0X77Gu9o9UpgWoaYQ/ObNshEOQJ+riG:u1u9fvPYSGN6ErJq

    Score
    9/10
    evasionupx

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks