Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Screenshot 2024-04-08 10.21.54 AM.png
-
Size
269KB
-
Sample
240411-rcgwksgb2s
-
MD5
e44424c25c66e41ea4bc7b1875e3cb78
-
SHA1
56aaec61789f65979ed9b33c1ec183c5caaa45ba
-
SHA256
a56812eeb43616199bd1831c97484c2dda8d04fad571193ff2bac06ffb96a0c4
-
SHA512
9070473302645e1b61cd5cca285ad0592f9300d8e425243a61b563ca09badeaab81164cc71ab228d360f3ead67a9e1402cbf34b14ab9bbe78be8a1c3323b9a80
-
SSDEEP
6144:TUIBT0ZpmaxGd8u+a1RU5YvpDPE56N1zqsR0VY:4I90ZpmaxYt+yU5YvpDMMzR/
Static task
static1
Behavioral task
behavioral1
Sample
Screenshot 2024-04-08 10.21.54 AM.png
Resource
win11-20240221-en
Malware Config
Targets
-
-
Target
Screenshot 2024-04-08 10.21.54 AM.png
-
Size
269KB
-
MD5
e44424c25c66e41ea4bc7b1875e3cb78
-
SHA1
56aaec61789f65979ed9b33c1ec183c5caaa45ba
-
SHA256
a56812eeb43616199bd1831c97484c2dda8d04fad571193ff2bac06ffb96a0c4
-
SHA512
9070473302645e1b61cd5cca285ad0592f9300d8e425243a61b563ca09badeaab81164cc71ab228d360f3ead67a9e1402cbf34b14ab9bbe78be8a1c3323b9a80
-
SSDEEP
6144:TUIBT0ZpmaxGd8u+a1RU5YvpDPE56N1zqsR0VY:4I90ZpmaxYt+yU5YvpDMMzR/
Score8/10-
Downloads MZ/PE file
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks system information in the registry
System information is often read in order to detect sandboxing environments.
-
Suspicious use of NtCreateThreadExHideFromDebugger
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-