Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

0477b8e0f3...82.exe

windows7-x64

9

0477b8e0f3...82.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0477b8e0f36c86b2f8b3b001b9bd16213c60a1bc74918666937a314911311f82

  • Size

    538KB

  • Sample

    240310-v3dhmahd5y

  • MD5

    9cc7e43b48932058a36bd0e355c4cef5

  • SHA1

    2a6b4a44c2d205e21ba6cf99a9796509af9ddeda

  • SHA256

    0477b8e0f36c86b2f8b3b001b9bd16213c60a1bc74918666937a314911311f82

  • SHA512

    a17b3e8e754bc762d9ae76720d849bd628b3125082e23690895f53718a2f6ef3f34f126c428c710c77e1159b080a63fcadf6c10a76db5ec3801bba37f8bf8d77

  • SSDEEP

    12288:yw5GtYhUAXlTu2cTRu7oMe3cfL8YdtntpFUrhV2X8NI:V5Gt8lTQTgMn0LLdtmrs8K

Score
9/10
evasion

Malware Config

Targets

    • Target

      0477b8e0f36c86b2f8b3b001b9bd16213c60a1bc74918666937a314911311f82

    • Size

      538KB

    • MD5

      9cc7e43b48932058a36bd0e355c4cef5

    • SHA1

      2a6b4a44c2d205e21ba6cf99a9796509af9ddeda

    • SHA256

      0477b8e0f36c86b2f8b3b001b9bd16213c60a1bc74918666937a314911311f82

    • SHA512

      a17b3e8e754bc762d9ae76720d849bd628b3125082e23690895f53718a2f6ef3f34f126c428c710c77e1159b080a63fcadf6c10a76db5ec3801bba37f8bf8d77

    • SSDEEP

      12288:yw5GtYhUAXlTu2cTRu7oMe3cfL8YdtntpFUrhV2X8NI:V5Gt8lTQTgMn0LLdtmrs8K

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks