Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad.exe
Resource
win10v2004-20230703-en
General
-
Target
6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad
-
Size
788KB
-
MD5
eda46f81835c5b2aab811dffede1712f
-
SHA1
bd2256102a1288e2b552f68078edc4bedb31d8c1
-
SHA256
6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad
-
SHA512
e3c85087de6743b9de201a72e725061583f62c4a1f22c50b321460a0dbe3863a6b42bd573b9a847eb5e355dadda023005692d2e09f49c46c855ecb5d7020684c
-
SSDEEP
24576:yZrvXgsPx2pUJAYFu2oF5/b5hOwyfonNGeUIiBs919sc6BI:CvXgKmUJAYFurFxjiBsn9slBI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad
Files
-
6fdebd27218d820aab768426215e50628db26dacb9cf992ba9212581f18706ad.exe windows x86
2a31e0dc8a7ff12e77eca4a6827c3c9e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateThread
ExitThread
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapSize
HeapReAlloc
SetUnhandledExceptionFilter
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
HeapFree
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
RaiseException
GetProfileStringA
InterlockedExchange
GetSystemTimeAsFileTime
RtlUnwind
GetTickCount
SetErrorMode
GetFileTime
GetFileAttributesA
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
DuplicateHandle
GetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleFileNameA
lstrcmpA
GetCurrentThread
FormatMessageA
LocalFree
SetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
SetEvent
ResetEvent
WaitForSingleObject
FindResourceA
LoadResource
SizeofResource
LockResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
MulDiv
GlobalFree
CreateEventA
lstrcpynA
CreateFileA
GetFileSize
VirtualAlloc
ReadFile
CloseHandle
VirtualFree
GetCurrentProcess
GetModuleHandleA
GetProcAddress
Sleep
GetEnvironmentStrings
VirtualProtect
user32
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
InflateRect
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
SetParent
PostThreadMessageA
IsDialogMessageA
SetDlgItemTextA
PostMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetDlgItem
GetWindowTextLengthA
DestroyWindow
WindowFromPoint
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
LoadCursorA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
GetSysColor
SetRect
GetWindowRect
GetParent
KillTimer
wsprintfA
TranslateAcceleratorA
IsWindowVisible
GetKeyState
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetFocus
GetNextDlgTabItem
GetDlgCtrlID
SetWindowPos
IsIconic
GetSystemMetrics
ReleaseDC
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
DrawIcon
LoadAcceleratorsA
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
GetClassNameA
DrawStateA
InvalidateRect
UpdateWindow
EnableWindow
FillRect
DrawTextA
ReleaseCapture
SetCapture
GetWindowTextA
GetSysColorBrush
LoadBitmapA
SetTimer
GetDC
GetClientRect
DestroyMenu
IsZoomed
PtInRect
SetRectEmpty
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
SetCursor
PostQuitMessage
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
LoadStringA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
SetWindowTextA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
IsWindowEnabled
GetDesktopWindow
SetWindowLongA
CharUpperA
ShowWindow
CreateWindowExA
MoveWindow
GetMenuCheckMarkDimensions
gdi32
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
GetClipBox
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
StretchDIBits
GetCharWidthA
GetTextExtentPoint32A
CreateFontIndirectA
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
GetDeviceCaps
CreateSolidBrush
GetStockObject
CreateFontA
SetTextColor
GetTextMetricsA
GetObjectA
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
DeleteObject
BitBlt
CreateDIBitmap
GetTextExtentPointA
DeleteDC
comdlg32
GetFileTitleA
winspool.drv
DocumentPropertiesA
OpenPrinterA
ClosePrinter
advapi32
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
shell32
ShellAboutA
comctl32
ord17
oledlg
ord8
ole32
CoFreeUnusedLibraries
OleUninitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
olepro32
ord251
ord253
oleaut32
VariantClear
SysFreeString
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
urlmon
URLDownloadToFileA
Sections
.text Size: 212KB - Virtual size: 209KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 52KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 496KB - Virtual size: 494KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ