Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
27f86d2306567c6c59f914a0b71e9680
-
Size
12.4MB
-
Sample
231231-ezblvsced5
-
MD5
27f86d2306567c6c59f914a0b71e9680
-
SHA1
01645c4b66427d48a8d773b16f632627c90b3a55
-
SHA256
fd51bcb1981f0d34b10371ab37113bffea76780690e8ffd891a3ba0e14a1b82c
-
SHA512
dec1c467685a6a65c2465b6127e48c4fc5fcaa1c9e2cb977aff3e41536f82e14c0382e16e2b9398d66bcd012d41ebaec210ab83f69cc374a971a694f083a5a5c
-
SSDEEP
393216:sSttl3FatYic7G3XXAwW+jDo2mYXAZq5VUNWgvL:sS/l1p5aHXAeDofe6BQgvL
Behavioral task
behavioral1
Sample
27f86d2306567c6c59f914a0b71e9680.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
27f86d2306567c6c59f914a0b71e9680.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
27f86d2306567c6c59f914a0b71e9680
-
Size
12.4MB
-
MD5
27f86d2306567c6c59f914a0b71e9680
-
SHA1
01645c4b66427d48a8d773b16f632627c90b3a55
-
SHA256
fd51bcb1981f0d34b10371ab37113bffea76780690e8ffd891a3ba0e14a1b82c
-
SHA512
dec1c467685a6a65c2465b6127e48c4fc5fcaa1c9e2cb977aff3e41536f82e14c0382e16e2b9398d66bcd012d41ebaec210ab83f69cc374a971a694f083a5a5c
-
SSDEEP
393216:sSttl3FatYic7G3XXAwW+jDo2mYXAZq5VUNWgvL:sS/l1p5aHXAeDofe6BQgvL
Score7/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-