Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    nooaftbaw.exe

  • Size

    2.7MB

  • Sample

    231016-vbzxjscd47

  • MD5

    0f9d70e594f56c8edd2ac19fe3965398

  • SHA1

    0d2d7a59cf1f0f4b3d0169995a5507142fea5973

  • SHA256

    952e8afafcb77c6b6ff3433fef828df1e07865189cd365e417317c8a66fe11c5

  • SHA512

    14dfbcb1b75c6023f9ffb9bdf7dfd29d2fed783b024835ec0d4feb04fcefdb494bea720cb0d3ce6782062d7cd42ddeea64e8f942d8857706a47857c97c3289fe

  • SSDEEP

    49152:KggKji9ggb/R5Xxwic92dOjSnzfirOV6UeMW030/do5iRfi7KRpm8ch/jPycIgSo:mKOWgbbxwD92dkSfiiQc3++iRKuVchjH

Score
7/10

Malware Config

Targets

    • Target

      nooaftbaw.exe

    • Size

      2.7MB

    • MD5

      0f9d70e594f56c8edd2ac19fe3965398

    • SHA1

      0d2d7a59cf1f0f4b3d0169995a5507142fea5973

    • SHA256

      952e8afafcb77c6b6ff3433fef828df1e07865189cd365e417317c8a66fe11c5

    • SHA512

      14dfbcb1b75c6023f9ffb9bdf7dfd29d2fed783b024835ec0d4feb04fcefdb494bea720cb0d3ce6782062d7cd42ddeea64e8f942d8857706a47857c97c3289fe

    • SSDEEP

      49152:KggKji9ggb/R5Xxwic92dOjSnzfirOV6UeMW030/do5iRfi7KRpm8ch/jPycIgSo:mKOWgbbxwD92dkSfiiQc3++iRKuVchjH

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks