Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec
-
Size
463KB
-
Sample
240405-am4pnaee9x
-
MD5
423aff124c033fc749b037e8d77a3a39
-
SHA1
be03d8f578fbd7f7386e04b78e86e7faff210669
-
SHA256
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec
-
SHA512
06d27fef2140a28c076635e012d623a2be5475082fba8ee2b13e4dded5234fe1c321d774eeff99d23927f8c4168cf7dc2f73e1ede0f45410f71b923ad8871572
-
SSDEEP
12288:CEQoSsYfqQReG2D6xxC3lymPAnh30ZORKpLG:CRqQbvxC1ysAhS4
Behavioral task
behavioral1
Sample
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec
-
Size
463KB
-
MD5
423aff124c033fc749b037e8d77a3a39
-
SHA1
be03d8f578fbd7f7386e04b78e86e7faff210669
-
SHA256
b85962e12e5fd524ce6992b3678651a80632e27f0584693172cee787ac699aec
-
SHA512
06d27fef2140a28c076635e012d623a2be5475082fba8ee2b13e4dded5234fe1c321d774eeff99d23927f8c4168cf7dc2f73e1ede0f45410f71b923ad8871572
-
SSDEEP
12288:CEQoSsYfqQReG2D6xxC3lymPAnh30ZORKpLG:CRqQbvxC1ysAhS4
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-