Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7
-
Size
555KB
-
Sample
240410-x2mq1shc44
-
MD5
269f6da393a0a8c20c7470d5ad2fad18
-
SHA1
e5e73f8ff6e5dd42cd117faef429c1477cf67fc7
-
SHA256
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7
-
SHA512
bf8020f495c41a3fbe51e0fdde3a4ae13b7d13d72ca4ac2bec8dc3f826ddf89dc68d2e3ee76c5c54a09169cd04c85055edde1529c23808ae45910cfe23a08c36
-
SSDEEP
12288:lXa8sUK3VkdqLuvghCwOM1bBbOV/dVpTRgTEyai1yA+ued1A4LeB7plZx0p:lq87K3CJgowOMVEV/5TRgTByA+uLH7pU
Static task
static1
Behavioral task
behavioral1
Sample
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7
-
Size
555KB
-
MD5
269f6da393a0a8c20c7470d5ad2fad18
-
SHA1
e5e73f8ff6e5dd42cd117faef429c1477cf67fc7
-
SHA256
1e9301515c7e2555c71060ca5281ee2cb2c7197f59924a586f27281fea2490f7
-
SHA512
bf8020f495c41a3fbe51e0fdde3a4ae13b7d13d72ca4ac2bec8dc3f826ddf89dc68d2e3ee76c5c54a09169cd04c85055edde1529c23808ae45910cfe23a08c36
-
SSDEEP
12288:lXa8sUK3VkdqLuvghCwOM1bBbOV/dVpTRgTEyai1yA+ued1A4LeB7plZx0p:lq87K3CJgowOMVEV/5TRgTByA+uLH7pU
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-