Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a
-
Size
500KB
-
Sample
240310-v6v7vahb86
-
MD5
9afcb1b8e59edafd0a765a776ef320b1
-
SHA1
30e0e1068df29911bf5fefc63873c009ded51278
-
SHA256
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a
-
SHA512
735b39b427e924aee5344a5a390a3c7e37bd3c1248f5aaeb0f5973ad28f1f434cc0ad32f8308b982473efbf46c209bc265d82d66a060f2482c47fe8459d09187
-
SSDEEP
6144:A5D4W9xOtO8XMLOjycd+0zmG4lPoFo6P3+zAoIM0eoYuP9BfnGqQpJMJCDxuRddk:A5Dp3x8XPjyYaIhf/0WCDxui/7
Static task
static1
Behavioral task
behavioral1
Sample
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a
-
Size
500KB
-
MD5
9afcb1b8e59edafd0a765a776ef320b1
-
SHA1
30e0e1068df29911bf5fefc63873c009ded51278
-
SHA256
048a302a8a04322488b343fbec8927c3ea75906e1bd6b77c480c0b70bc2a557a
-
SHA512
735b39b427e924aee5344a5a390a3c7e37bd3c1248f5aaeb0f5973ad28f1f434cc0ad32f8308b982473efbf46c209bc265d82d66a060f2482c47fe8459d09187
-
SSDEEP
6144:A5D4W9xOtO8XMLOjycd+0zmG4lPoFo6P3+zAoIM0eoYuP9BfnGqQpJMJCDxuRddk:A5Dp3x8XPjyYaIhf/0WCDxui/7
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-