Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220
-
Size
789KB
-
Sample
221205-lm1hsabg2t
-
MD5
e671a15e078730b9b5cb6cd661712986
-
SHA1
b05713d9072aa673efefd500fd4e6759da0073d1
-
SHA256
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220
-
SHA512
8abb91d896576ba9b6914b059c4272ed519406cdcda90437454fabeda8cf1595f39bc821ccae2383e3bebfd5f6134fd006d9e282e485ff4d327a161c7adfd27b
-
SSDEEP
24576:IhmqxxdA1gKN/5Pcj7oNu3wkslrfgmOTLTmUHX:aS+g5PXNXromOTmsX
Static task
static1
Behavioral task
behavioral1
Sample
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220
-
Size
789KB
-
MD5
e671a15e078730b9b5cb6cd661712986
-
SHA1
b05713d9072aa673efefd500fd4e6759da0073d1
-
SHA256
a9561f23a08673bbc568e755d958770ac99a9e0d3283375fd452d856bdba5220
-
SHA512
8abb91d896576ba9b6914b059c4272ed519406cdcda90437454fabeda8cf1595f39bc821ccae2383e3bebfd5f6134fd006d9e282e485ff4d327a161c7adfd27b
-
SSDEEP
24576:IhmqxxdA1gKN/5Pcj7oNu3wkslrfgmOTLTmUHX:aS+g5PXNXromOTmsX
Score7/10-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-