Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    68c1087dc475b65907ffdf8e4353260c

  • Size

    6.3MB

  • Sample

    231226-mxt97ahcgp

  • MD5

    68c1087dc475b65907ffdf8e4353260c

  • SHA1

    64ff3fea47709e563a65da87f4f6528f6e82c838

  • SHA256

    70d729c98212356bda5b956024d31190c04c54de0166264db7a783f805ddbfc6

  • SHA512

    af06f39580315d222f076accacbfee1b5d5e4866a248b8f19c24ef0e3dd95cc1a68ecc8538b0750b182f1caab3348e45c6be9457b37a74d5058e99f2057ae726

  • SSDEEP

    196608:eS3YdGvLDKwjQlbqQKC3aJ7ufuDmeyvv2RAxDe0zMvh:eh4z2wjQlbqQKC3M7ufWkvkh

Score
9/10

Malware Config

Targets

    • Target

      68c1087dc475b65907ffdf8e4353260c

    • Size

      6.3MB

    • MD5

      68c1087dc475b65907ffdf8e4353260c

    • SHA1

      64ff3fea47709e563a65da87f4f6528f6e82c838

    • SHA256

      70d729c98212356bda5b956024d31190c04c54de0166264db7a783f805ddbfc6

    • SHA512

      af06f39580315d222f076accacbfee1b5d5e4866a248b8f19c24ef0e3dd95cc1a68ecc8538b0750b182f1caab3348e45c6be9457b37a74d5058e99f2057ae726

    • SSDEEP

      196608:eS3YdGvLDKwjQlbqQKC3aJ7ufuDmeyvv2RAxDe0zMvh:eh4z2wjQlbqQKC3M7ufWkvkh

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks whether UAC is enabled

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks