Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b23d7ef130ba8f353f3146a5ed5ba30c
-
Size
1.1MB
-
Sample
240304-qqxnhsbc8t
-
MD5
b23d7ef130ba8f353f3146a5ed5ba30c
-
SHA1
65e31a9b78916dcdd524ef5d15ddcc7ce077016b
-
SHA256
bddf1563d396b18413bc72445ea17773930307fa270ce8412c60d749df1ee6b6
-
SHA512
e44e469c3953b1662ae656eec02a74ff34e1cabff432e5ac8a09a63438add6df2e985e02b981c7ab32893b2f5cf6c399e8242905fd7c52441e8a33c219adc85d
-
SSDEEP
24576:hvLH4xLAoBEUlJsqFu9U6xErmR4/sY9Wg0I6S6XO9od1W6x5bdbTcbry:ZYxYQCqU9UAFeR0Xvh1iry
Static task
static1
Behavioral task
behavioral1
Sample
b23d7ef130ba8f353f3146a5ed5ba30c.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b23d7ef130ba8f353f3146a5ed5ba30c.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b23d7ef130ba8f353f3146a5ed5ba30c
-
Size
1.1MB
-
MD5
b23d7ef130ba8f353f3146a5ed5ba30c
-
SHA1
65e31a9b78916dcdd524ef5d15ddcc7ce077016b
-
SHA256
bddf1563d396b18413bc72445ea17773930307fa270ce8412c60d749df1ee6b6
-
SHA512
e44e469c3953b1662ae656eec02a74ff34e1cabff432e5ac8a09a63438add6df2e985e02b981c7ab32893b2f5cf6c399e8242905fd7c52441e8a33c219adc85d
-
SSDEEP
24576:hvLH4xLAoBEUlJsqFu9U6xErmR4/sY9Wg0I6S6XO9od1W6x5bdbTcbry:ZYxYQCqU9UAFeR0Xvh1iry
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-