Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
nooaftbaw.exe
-
Size
2.7MB
-
Sample
231016-vbzxjscd47
-
MD5
0f9d70e594f56c8edd2ac19fe3965398
-
SHA1
0d2d7a59cf1f0f4b3d0169995a5507142fea5973
-
SHA256
952e8afafcb77c6b6ff3433fef828df1e07865189cd365e417317c8a66fe11c5
-
SHA512
14dfbcb1b75c6023f9ffb9bdf7dfd29d2fed783b024835ec0d4feb04fcefdb494bea720cb0d3ce6782062d7cd42ddeea64e8f942d8857706a47857c97c3289fe
-
SSDEEP
49152:KggKji9ggb/R5Xxwic92dOjSnzfirOV6UeMW030/do5iRfi7KRpm8ch/jPycIgSo:mKOWgbbxwD92dkSfiiQc3++iRKuVchjH
Malware Config
Targets
-
-
Target
nooaftbaw.exe
-
Size
2.7MB
-
MD5
0f9d70e594f56c8edd2ac19fe3965398
-
SHA1
0d2d7a59cf1f0f4b3d0169995a5507142fea5973
-
SHA256
952e8afafcb77c6b6ff3433fef828df1e07865189cd365e417317c8a66fe11c5
-
SHA512
14dfbcb1b75c6023f9ffb9bdf7dfd29d2fed783b024835ec0d4feb04fcefdb494bea720cb0d3ce6782062d7cd42ddeea64e8f942d8857706a47857c97c3289fe
-
SSDEEP
49152:KggKji9ggb/R5Xxwic92dOjSnzfirOV6UeMW030/do5iRfi7KRpm8ch/jPycIgSo:mKOWgbbxwD92dkSfiiQc3++iRKuVchjH
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-