Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479
-
Size
1.3MB
-
Sample
240319-lzwelaha35
-
MD5
c2cfd76b9603ea4c1059e48898422f9e
-
SHA1
bf65cc1f8e6e0420f8b59df36fc5690e0bbf3507
-
SHA256
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479
-
SHA512
dc3cf4387895b89607de6ef7d8cdc34c6b34213603797363c23dbe7dcec705c44890d376cbca0fba377efe75c8ded530daaee8de71c0ece2678f23e3a5266617
-
SSDEEP
24576:gp+jbOhrm4Fml1U5jW/zaOUs0lxCThawmnMIi3jZ1sbdMjtKpNbeooiC:NPC54l656LaKixCUwqJiXspMApg
Behavioral task
behavioral1
Sample
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479
-
Size
1.3MB
-
MD5
c2cfd76b9603ea4c1059e48898422f9e
-
SHA1
bf65cc1f8e6e0420f8b59df36fc5690e0bbf3507
-
SHA256
d59d6ec4e36b7d8175002ec2dee26486d93105fadb601d21f2dfcdf08e104479
-
SHA512
dc3cf4387895b89607de6ef7d8cdc34c6b34213603797363c23dbe7dcec705c44890d376cbca0fba377efe75c8ded530daaee8de71c0ece2678f23e3a5266617
-
SSDEEP
24576:gp+jbOhrm4Fml1U5jW/zaOUs0lxCThawmnMIi3jZ1sbdMjtKpNbeooiC:NPC54l656LaKixCUwqJiXspMApg
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-