Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

  • Size

    12.9MB

  • Sample

    240626-can5jszhnm

  • MD5

    683aa7b5004fc166172c8742e8df785e

  • SHA1

    54f5f5a76a5e39625a310206208537c4b8ea18e2

  • SHA256

    42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

  • SHA512

    5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17

  • SSDEEP

    393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a

Score
9/10

Malware Config

Targets

    • Target

      42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

    • Size

      12.9MB

    • MD5

      683aa7b5004fc166172c8742e8df785e

    • SHA1

      54f5f5a76a5e39625a310206208537c4b8ea18e2

    • SHA256

      42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

    • SHA512

      5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17

    • SSDEEP

      393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.