Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    98d8ad3d04e00e250c447ed67f08c4a3

  • Size

    12.3MB

  • Sample

    240213-jgd2gsce7s

  • MD5

    98d8ad3d04e00e250c447ed67f08c4a3

  • SHA1

    4d5c89af51f63d3689ce56d9a666ba15732229a3

  • SHA256

    0513d4c04b29a4a2671a12f7c1213f7536d4ca979c99287bc9e156f5416583cc

  • SHA512

    b94e0722b5b46c4674f1ab9ec028bc18e46eea969a2578fdf9bc47b1a80f6fe4727b65b2e6692329dc3b9f24450800b7cbe16d4db149b78f8e36367c513ec7ec

  • SSDEEP

    393216:4fLHvRcgV3jrz7O+auf/diuiG6d8VmLjzAkxbIs440oG:GLHvRP3j/y+Ff/UG6SVgxbIT40z

Malware Config

Targets

    • Target

      98d8ad3d04e00e250c447ed67f08c4a3

    • Size

      12.3MB

    • MD5

      98d8ad3d04e00e250c447ed67f08c4a3

    • SHA1

      4d5c89af51f63d3689ce56d9a666ba15732229a3

    • SHA256

      0513d4c04b29a4a2671a12f7c1213f7536d4ca979c99287bc9e156f5416583cc

    • SHA512

      b94e0722b5b46c4674f1ab9ec028bc18e46eea969a2578fdf9bc47b1a80f6fe4727b65b2e6692329dc3b9f24450800b7cbe16d4db149b78f8e36367c513ec7ec

    • SSDEEP

      393216:4fLHvRcgV3jrz7O+auf/diuiG6d8VmLjzAkxbIs440oG:GLHvRP3j/y+Ff/UG6SVgxbIT40z

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks