Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
UnlockTool-2024-03-22-0.exe
-
Size
184.6MB
-
Sample
240327-tgmczaah2s
-
MD5
49297f37905a3d9497115cb2cfea4d8a
-
SHA1
f52fdd473233453bf037e0d15089035d3d481ac2
-
SHA256
11bf0c36322d987b12c4a944672f9ab5b095db9e66181b641f8fa1bbe0b9e193
-
SHA512
d23b30c6645ac8fbaf5b33526702720cc4f1a6db6c8b5b35036c7d4207898d10adbcce5f9ca8615ec68729f300910b04a5e452877dfab8543a36caf176b8023c
-
SSDEEP
3145728:H7fHpOE8Q/K6jVx913QrdPoBRGLj6+4jn5G1U72k32SriPd3:HbFXLjVx9tQqBRG36+475p77N4
Static task
static1
Behavioral task
behavioral1
Sample
UnlockTool-2024-03-22-0.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
UnlockTool-2024-03-22-0.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
UnlockTool-2024-03-22-0.exe
-
Size
184.6MB
-
MD5
49297f37905a3d9497115cb2cfea4d8a
-
SHA1
f52fdd473233453bf037e0d15089035d3d481ac2
-
SHA256
11bf0c36322d987b12c4a944672f9ab5b095db9e66181b641f8fa1bbe0b9e193
-
SHA512
d23b30c6645ac8fbaf5b33526702720cc4f1a6db6c8b5b35036c7d4207898d10adbcce5f9ca8615ec68729f300910b04a5e452877dfab8543a36caf176b8023c
-
SSDEEP
3145728:H7fHpOE8Q/K6jVx913QrdPoBRGLj6+4jn5G1U72k32SriPd3:HbFXLjVx9tQqBRG36+475p77N4
Score8/10-
Manipulates Digital Signatures
Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-