Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    RUT_V3.exe

  • Size

    10.3MB

  • Sample

    231113-wc75zsec5z

  • MD5

    a961d772dd3cf64aac768de86e0c346b

  • SHA1

    5b842b850cf20c6589ff0a468be93ffb0deeb5a0

  • SHA256

    3a39454c9059db4f64e6ddb92a89383f8429fb832a9118ce0d1e9cd93a87a517

  • SHA512

    77da1ab2e393a68d0063b601c70c941ba30ee54f58cf435a30e277d16067921e4faad46326823606444751bfd8cea7bd2c5d078d7e313d1a0850ba5cb76cc15f

  • SSDEEP

    196608:XwhlrIeTPA0+jmdGoxGNTF4bIl8DN6skBGtshCD7rupK4wfvK0:XI96DOGWAmb+8DVEh22pK1B

Malware Config

Targets

    • Target

      RUT_V3.exe

    • Size

      10.3MB

    • MD5

      a961d772dd3cf64aac768de86e0c346b

    • SHA1

      5b842b850cf20c6589ff0a468be93ffb0deeb5a0

    • SHA256

      3a39454c9059db4f64e6ddb92a89383f8429fb832a9118ce0d1e9cd93a87a517

    • SHA512

      77da1ab2e393a68d0063b601c70c941ba30ee54f58cf435a30e277d16067921e4faad46326823606444751bfd8cea7bd2c5d078d7e313d1a0850ba5cb76cc15f

    • SSDEEP

      196608:XwhlrIeTPA0+jmdGoxGNTF4bIl8DN6skBGtshCD7rupK4wfvK0:XI96DOGWAmb+8DVEh22pK1B

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks