Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

e3eb9276db...06.dll

windows7-x64

7

e3eb9276db...06.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e3eb9276db0dd564a9ad4351ff9b37fb3b3f9d17cc99b4e86bb412125c31f206

  • Size

    6.2MB

  • Sample

    231007-gp15wahd7z

  • MD5

    d5cec7748d6e028eaa82b9864743296f

  • SHA1

    d4bd82171b077fa9d56a8922fda599fb3c8a6fcc

  • SHA256

    e3eb9276db0dd564a9ad4351ff9b37fb3b3f9d17cc99b4e86bb412125c31f206

  • SHA512

    8d61ea08594d7c2cb6e49c806d61b9e48daa92dddbc5ccdf0b97369083207edc630cc1e4bcffd0aa6c16c439a1189725f70b1fb2f937ccf6051a890d23ad6515

  • SSDEEP

    196608:FVulsv0Rbprq2zpeJd1o7im6wqHRs68zlFK0SL:3WFvzpS1oblqx0lFr

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      e3eb9276db0dd564a9ad4351ff9b37fb3b3f9d17cc99b4e86bb412125c31f206

    • Size

      6.2MB

    • MD5

      d5cec7748d6e028eaa82b9864743296f

    • SHA1

      d4bd82171b077fa9d56a8922fda599fb3c8a6fcc

    • SHA256

      e3eb9276db0dd564a9ad4351ff9b37fb3b3f9d17cc99b4e86bb412125c31f206

    • SHA512

      8d61ea08594d7c2cb6e49c806d61b9e48daa92dddbc5ccdf0b97369083207edc630cc1e4bcffd0aa6c16c439a1189725f70b1fb2f937ccf6051a890d23ad6515

    • SSDEEP

      196608:FVulsv0Rbprq2zpeJd1o7im6wqHRs68zlFK0SL:3WFvzpS1oblqx0lFr

    Score
    7/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks