Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    71d5e8282abbe5c45ed3cb40515bdb30N.exe

  • Size

    507KB

  • Sample

    240722-g8sb3ssgrk

  • MD5

    71d5e8282abbe5c45ed3cb40515bdb30

  • SHA1

    3232b234010e12308ea6bb6a461a7f5caa7840a7

  • SHA256

    576baad9eb890eb36128a2677d133e9864da403ba6f937c1dae6b75e9d8a5a7a

  • SHA512

    f06fcf883c847c3fd08a3c75022b93985fdb17019f27722352e1686740ab4e688b05c7cf4c9661bf6f4da126fe5e2f803b4e6e1c14a89b9c67ffc9c0e6a0dbdd

  • SSDEEP

    12288:my8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWdD:mytAXDHvLiVM1lCcPuf249YOD

Score
9/10

Malware Config

Targets

    • Target

      71d5e8282abbe5c45ed3cb40515bdb30N.exe

    • Size

      507KB

    • MD5

      71d5e8282abbe5c45ed3cb40515bdb30

    • SHA1

      3232b234010e12308ea6bb6a461a7f5caa7840a7

    • SHA256

      576baad9eb890eb36128a2677d133e9864da403ba6f937c1dae6b75e9d8a5a7a

    • SHA512

      f06fcf883c847c3fd08a3c75022b93985fdb17019f27722352e1686740ab4e688b05c7cf4c9661bf6f4da126fe5e2f803b4e6e1c14a89b9c67ffc9c0e6a0dbdd

    • SSDEEP

      12288:my8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWdD:mytAXDHvLiVM1lCcPuf249YOD

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks