Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0
-
Size
12.9MB
-
Sample
240626-can5jszhnm
-
MD5
683aa7b5004fc166172c8742e8df785e
-
SHA1
54f5f5a76a5e39625a310206208537c4b8ea18e2
-
SHA256
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0
-
SHA512
5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17
-
SSDEEP
393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a
Static task
static1
Behavioral task
behavioral1
Sample
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0
-
Size
12.9MB
-
MD5
683aa7b5004fc166172c8742e8df785e
-
SHA1
54f5f5a76a5e39625a310206208537c4b8ea18e2
-
SHA256
42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0
-
SHA512
5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17
-
SSDEEP
393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-