Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1b389f2f31906e0efefe1b92905d1016

  • Size

    512KB

  • Sample

    231224-3z845afhgk

  • MD5

    1b389f2f31906e0efefe1b92905d1016

  • SHA1

    6e29ce4c743e3bef65a66653b2b37654e998cc59

  • SHA256

    22d43752def9631329bb7aaff47e1fc063398c240fed4f4eaf00c30ccbf065ea

  • SHA512

    421d8a3be87b9d1faa01e9f0964a3d0b1962a905bac9bbc22ce47342081eae2dc7fa350de5d8fdf10357b4203e651898e32bbe087df0eac49d5b1b152456dd0e

  • SSDEEP

    12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4j:0+h9OY70z+warul3E4j

Score
9/10

Malware Config

Targets

    • Target

      1b389f2f31906e0efefe1b92905d1016

    • Size

      512KB

    • MD5

      1b389f2f31906e0efefe1b92905d1016

    • SHA1

      6e29ce4c743e3bef65a66653b2b37654e998cc59

    • SHA256

      22d43752def9631329bb7aaff47e1fc063398c240fed4f4eaf00c30ccbf065ea

    • SHA512

      421d8a3be87b9d1faa01e9f0964a3d0b1962a905bac9bbc22ce47342081eae2dc7fa350de5d8fdf10357b4203e651898e32bbe087df0eac49d5b1b152456dd0e

    • SSDEEP

      12288:0+h9St2Ma70zIIc91Dwws4zruXic2O/3E4j:0+h9OY70z+warul3E4j

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks