Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

  • Size

    12.9MB

  • Sample

    240626-can5jszhnm

  • MD5

    683aa7b5004fc166172c8742e8df785e

  • SHA1

    54f5f5a76a5e39625a310206208537c4b8ea18e2

  • SHA256

    42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

  • SHA512

    5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17

  • SSDEEP

    393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a

Score
9/10

Malware Config

Targets

    • Target

      42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

    • Size

      12.9MB

    • MD5

      683aa7b5004fc166172c8742e8df785e

    • SHA1

      54f5f5a76a5e39625a310206208537c4b8ea18e2

    • SHA256

      42fcdf033c6f87a5fab4cdfe2a91a4dd77bb0937ef81ee4e79a81c4524dd41c0

    • SHA512

      5f37e887b01cf1d0b37723ea2c11739da3c20ee7fec8e157333fdf954871d3cb20569d9d0b0519e7e72e6ca58b99c947a7a0d55f0c5e16ecd1b816ee01240c17

    • SSDEEP

      393216:X948t8ypGfbpfik0YkOtrTEJNkCmE0MeivlZ8a:XOe8bzpqzZOtsJNALMtvlZ8a

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks