Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169
-
Size
231KB
-
Sample
240424-vbl1padd74
-
MD5
2818f39135defe87aee238809434b6f7
-
SHA1
d0b1aa1e58367511512cb7824d419b0cafb53c5a
-
SHA256
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169
-
SHA512
4a9b766e7fe1f80ff3a5d7029a1b7a3c37ea197c0a22e4497521b2fb4a955ca9297e65576f3c4b1199bb44c6f9ca9d666b5b6ad12cb813bf136bc1ed2fbfc885
-
SSDEEP
6144:xjluQoSqIo5R4nM/40yJNaRFhyt5qFbtGijGrs0VxujOq:xEQoS+qhr50tGioscQOq
Behavioral task
behavioral1
Sample
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169
-
Size
231KB
-
MD5
2818f39135defe87aee238809434b6f7
-
SHA1
d0b1aa1e58367511512cb7824d419b0cafb53c5a
-
SHA256
63debd5884fe33be596b8b60c6a9d282238a65c6be4c59a88f9041ff33efc169
-
SHA512
4a9b766e7fe1f80ff3a5d7029a1b7a3c37ea197c0a22e4497521b2fb4a955ca9297e65576f3c4b1199bb44c6f9ca9d666b5b6ad12cb813bf136bc1ed2fbfc885
-
SSDEEP
6144:xjluQoSqIo5R4nM/40yJNaRFhyt5qFbtGijGrs0VxujOq:xEQoS+qhr50tGioscQOq
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-