Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
26de7dce5b03de18618ccffacb5e80b3
-
Size
2.2MB
-
Sample
231231-eb8xfsefe9
-
MD5
26de7dce5b03de18618ccffacb5e80b3
-
SHA1
d60913ea70a875abff085c14be1a8297c1308941
-
SHA256
f4bcf6c24b99666c523f2364ff26e23931e8e594af5b4527a0cdc98dbfe72b0f
-
SHA512
1f78395a169e4d8f27aad962d386fd55b1d4c453ebd33fc3221b95afac5a7d44e54fa52e0f5719c561ab318dd72cad588017a8f3518db9c0f089da2b482b54db
-
SSDEEP
49152:HReqHgVbX92fshlPs/T/ZKiWCwsLD06xQn+/F3Q1sBp1b9Mos1KM6J:HRRAdgkfs/A+pLPxQ+93QSBr9DJ
Behavioral task
behavioral1
Sample
26de7dce5b03de18618ccffacb5e80b3.dll
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
26de7dce5b03de18618ccffacb5e80b3
-
Size
2.2MB
-
MD5
26de7dce5b03de18618ccffacb5e80b3
-
SHA1
d60913ea70a875abff085c14be1a8297c1308941
-
SHA256
f4bcf6c24b99666c523f2364ff26e23931e8e594af5b4527a0cdc98dbfe72b0f
-
SHA512
1f78395a169e4d8f27aad962d386fd55b1d4c453ebd33fc3221b95afac5a7d44e54fa52e0f5719c561ab318dd72cad588017a8f3518db9c0f089da2b482b54db
-
SSDEEP
49152:HReqHgVbX92fshlPs/T/ZKiWCwsLD06xQn+/F3Q1sBp1b9Mos1KM6J:HRRAdgkfs/A+pLPxQ+93QSBr9DJ
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-