Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

iexplore.exe

windows7-x64

9

iexplore.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    iexplore.exe

  • Size

    10.7MB

  • Sample

    240313-3pbqwacg3z

  • MD5

    8b5d0068d81159a93d0039020058bb36

  • SHA1

    077e4acf9df950bf3c03867ab6756dbc2850641e

  • SHA256

    d1edde93481fe9657a75ca47c6f4f28be372afb4374402d4c95eb06ce380a263

  • SHA512

    18334137f1c2dba149ef479660e80c0bd1299db30867076d4fe1f0596d1d1182f1dc57884905c3fcc362f26a4a68baec3767761bf6d9cffce798941dc3e8521d

  • SSDEEP

    196608:IPdgdrOIM+R7fZOa0x2CV4zSYPZmXebyzlvLrCreOSZ3OqVtHsrQ:IitOUR7fZOa0NsSYPqlCqOSJOgHsr

Score
9/10
evasionthemidatrojan

Malware Config

Targets

    • Target

      iexplore.exe

    • Size

      10.7MB

    • MD5

      8b5d0068d81159a93d0039020058bb36

    • SHA1

      077e4acf9df950bf3c03867ab6756dbc2850641e

    • SHA256

      d1edde93481fe9657a75ca47c6f4f28be372afb4374402d4c95eb06ce380a263

    • SHA512

      18334137f1c2dba149ef479660e80c0bd1299db30867076d4fe1f0596d1d1182f1dc57884905c3fcc362f26a4a68baec3767761bf6d9cffce798941dc3e8521d

    • SSDEEP

      196608:IPdgdrOIM+R7fZOa0x2CV4zSYPZmXebyzlvLrCreOSZ3OqVtHsrQ:IitOUR7fZOa0NsSYPqlCqOSJOgHsr

    Score
    9/10
    evasionthemidatrojan

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Checks whether UAC is enabled

      evasiontrojan

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks