Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
71d5e8282abbe5c45ed3cb40515bdb30N.exe
-
Size
507KB
-
Sample
240722-g8sb3ssgrk
-
MD5
71d5e8282abbe5c45ed3cb40515bdb30
-
SHA1
3232b234010e12308ea6bb6a461a7f5caa7840a7
-
SHA256
576baad9eb890eb36128a2677d133e9864da403ba6f937c1dae6b75e9d8a5a7a
-
SHA512
f06fcf883c847c3fd08a3c75022b93985fdb17019f27722352e1686740ab4e688b05c7cf4c9661bf6f4da126fe5e2f803b4e6e1c14a89b9c67ffc9c0e6a0dbdd
-
SSDEEP
12288:my8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWdD:mytAXDHvLiVM1lCcPuf249YOD
Static task
static1
Behavioral task
behavioral1
Sample
71d5e8282abbe5c45ed3cb40515bdb30N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
71d5e8282abbe5c45ed3cb40515bdb30N.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
71d5e8282abbe5c45ed3cb40515bdb30N.exe
-
Size
507KB
-
MD5
71d5e8282abbe5c45ed3cb40515bdb30
-
SHA1
3232b234010e12308ea6bb6a461a7f5caa7840a7
-
SHA256
576baad9eb890eb36128a2677d133e9864da403ba6f937c1dae6b75e9d8a5a7a
-
SHA512
f06fcf883c847c3fd08a3c75022b93985fdb17019f27722352e1686740ab4e688b05c7cf4c9661bf6f4da126fe5e2f803b4e6e1c14a89b9c67ffc9c0e6a0dbdd
-
SSDEEP
12288:my8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWdD:mytAXDHvLiVM1lCcPuf249YOD
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-