Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    43aafc65ac2d512dca0620a918656424

  • Size

    2.1MB

  • Sample

    231225-3l1ktsadc8

  • MD5

    43aafc65ac2d512dca0620a918656424

  • SHA1

    efac08ce50b901c923bff75dbfcc55c781ffbef5

  • SHA256

    e17adb780a9972b76e3c262249174487e727ee809f9a6407d32380892752b2a4

  • SHA512

    91803ae7fdacc5e5cf244a8ac606349f1587ac11cc3eebca5b5c675ed1fece2a55f14a85f659cf190721e8a0e0a0ecbf1717147969e0f5b525303c0a6048f3a5

  • SSDEEP

    49152:nkW0NNm/cXrpQvPQS1EAMW9K7IuF9FeW0xilgkBNhi/e8G:nkWPz/OW48keH+i/lG

Score
7/10

Malware Config

Targets

    • Target

      43aafc65ac2d512dca0620a918656424

    • Size

      2.1MB

    • MD5

      43aafc65ac2d512dca0620a918656424

    • SHA1

      efac08ce50b901c923bff75dbfcc55c781ffbef5

    • SHA256

      e17adb780a9972b76e3c262249174487e727ee809f9a6407d32380892752b2a4

    • SHA512

      91803ae7fdacc5e5cf244a8ac606349f1587ac11cc3eebca5b5c675ed1fece2a55f14a85f659cf190721e8a0e0a0ecbf1717147969e0f5b525303c0a6048f3a5

    • SSDEEP

      49152:nkW0NNm/cXrpQvPQS1EAMW9K7IuF9FeW0xilgkBNhi/e8G:nkWPz/OW48keH+i/lG

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks