Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

Product Sa...ls.exe

windows7-x64

9

Product Sa...ls.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Product Samples Xls.zip

  • Size

    655KB

  • Sample

    230514-qd3zrsec7v

  • MD5

    02e5a3fa1254414f93c8173a6fbf54fb

  • SHA1

    8792a2297a6d9430f31a0938f0646a9db3c9a950

  • SHA256

    a1080dabf296d3fad0718120c07bae5b175e166b791e701f4ca86b10f53678e2

  • SHA512

    67a9dc386153a72095169ff1680a57ff3baa80434b2c52e640c87800cd85b907170b8cbb4dcc92f7b4bfa0ea2b4d2855565b38bdc7ffb5adf518e2736cd74767

  • SSDEEP

    12288:RhKLgt76axUCxtc2iq4hhp+BV6IE2/myE5LLGZSJB9mJyNg1UypqfG6FgyFhSCw:Rhz6a7fc15b8VYe1cB9mijeC1F/zw

Score
9/10
evasion

Malware Config

Targets

    • Target

      Product Samples Xls.exe

    • Size

      1.3MB

    • MD5

      3a490d0492e80d4b5af60224a4d4a11e

    • SHA1

      d201c99150aff536b2fedbad54de95706cbf1a65

    • SHA256

      25f6825f2ee621c67613df2914428f7c98638f0c3e72ffa533250b61d8323f46

    • SHA512

      dc6bc1efb171952c66aae54a37ddbdb353c0766d8009ffb536dc54ac6ae2f13fca2f70bfef90a59dd9b7a157973f6dfbb83a7788fb496ccfb331f337bb256b41

    • SSDEEP

      24576:LFR1+cpVowS8DpoxF2iL4mJdl3yd2OluON4fA9uC:vxsrKp40ip3yd2OluON4fA9u

    Score
    9/10
    evasion

    • Looks for VirtualBox Guest Additions in registry

      evasion

    • Looks for VMWare Tools registry key

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks