Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    User.exe

  • Size

    5.0MB

  • Sample

    240513-hh6x8aea25

  • MD5

    4b6fe0a538083a3bba72d2064af9e301

  • SHA1

    c2624834f468ab807979faf7760391771f0c4fa2

  • SHA256

    9857b18bea72a8c24fccf8eaa369a67b3882de914e9d31705f14d6e5bf2215ff

  • SHA512

    b2c6dd176105eb7dd0eeb939fa50eac4ecba0ea91455eb241fd5817223957f598cd7cef22f6ca8b4cc5d4d0558cf2b9039771fb07c5bda49c6b4da5398d0ef90

  • SSDEEP

    98304:htEMev0XEBsGBcGdFHVYOV7+7NqTx7Z7CY+LpHZFqewwmNi9RT7SZ7StaDuq:h2Mev2EBsGCQHVYOVqMz+5FqewBNi9Rr

Score
7/10

Malware Config

Targets

    • Target

      User.exe

    • Size

      5.0MB

    • MD5

      4b6fe0a538083a3bba72d2064af9e301

    • SHA1

      c2624834f468ab807979faf7760391771f0c4fa2

    • SHA256

      9857b18bea72a8c24fccf8eaa369a67b3882de914e9d31705f14d6e5bf2215ff

    • SHA512

      b2c6dd176105eb7dd0eeb939fa50eac4ecba0ea91455eb241fd5817223957f598cd7cef22f6ca8b4cc5d4d0558cf2b9039771fb07c5bda49c6b4da5398d0ef90

    • SSDEEP

      98304:htEMev0XEBsGBcGdFHVYOV7+7NqTx7Z7CY+LpHZFqewwmNi9RT7SZ7StaDuq:h2Mev2EBsGCQHVYOVqMz+5FqewBNi9Rr

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks