Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ce3185730246203700a23e2bca796d99.bin
-
Size
7.2MB
-
Sample
231211-dp9kgacge7
-
MD5
acd83b029fd8f4522d155f742541ab04
-
SHA1
5f0c7888ad04c6678d2cfff1475d5c88916d25a2
-
SHA256
f6529ce957deb1318e4e0181d41f6bb4df0ea7f2e8180b189c9ee51579846e80
-
SHA512
99489f5578305a07de6ac42e882dcd675798e627c2103b9adc807c7fd2b2ff6df10497b6fbe83aac23e3b8a2115b2fadce69147e44c5a10a1e6e27babf87b987
-
SSDEEP
98304:LkhGH6cuAP0pNmn4WJjilltf+OCsDTNscWReXm1dRqzzGcOXn+mxlgueL0i/FrNK:wAuO0vmn4x9scWEW1dcQ3+mGgC9eKQtj
Static task
static1
Behavioral task
behavioral1
Sample
e991d5b543767bccfbee554ebcfbdb87c90fc10f0f9230d49089e27d280558f8.exe
Resource
win7-20231020-en
Malware Config
Targets
-
-
Target
e991d5b543767bccfbee554ebcfbdb87c90fc10f0f9230d49089e27d280558f8.exe
-
Size
7.2MB
-
MD5
ce3185730246203700a23e2bca796d99
-
SHA1
0df5c4d7f5352dbe6ffedf575282f09faedf788f
-
SHA256
e991d5b543767bccfbee554ebcfbdb87c90fc10f0f9230d49089e27d280558f8
-
SHA512
ce19257d2e6187e3071253b869f62dd119b52425ff58a46c8a644831d01d4652124f0323653a96703929b2a5bafcc2392d2102397cbf8cfc321e859126b8d8c2
-
SSDEEP
196608:91Orab2X1JKmRNu34cJcyd8/1cj+b3Y6pR0c9zw3Zzxaq:3Or2M1JKIuLJJdacw3Y6pR0cuf
-
Blocklisted process makes network request
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops desktop.ini file(s)
-
Drops file in System32 directory
-