Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
7bce0437d8dd3e343e1cd207ad71aa20N.exe
-
Size
490KB
-
Sample
240722-jat45awbrp
-
MD5
7bce0437d8dd3e343e1cd207ad71aa20
-
SHA1
420576543e75f215ea357467a127058b94d1d136
-
SHA256
24d06d9db20ce0b44896ac3e02b99a032b7ad5b8c884ffa30046e1d41b7e9c6d
-
SHA512
c15735260e24768eb8881e37348cd4a90374f19d7f8c2c7e3d5380e86f4f216a249c2e3551be3169f7a34dc938b65d19ad29c81b7888aa63d29951d3e0da9a4f
-
SSDEEP
12288:hHJj3R/vGJl1xLdNb9l+FfeHO9HfxuvCM:hHx3R/voDpQCc2Z
Static task
static1
Behavioral task
behavioral1
Sample
7bce0437d8dd3e343e1cd207ad71aa20N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
7bce0437d8dd3e343e1cd207ad71aa20N.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
7bce0437d8dd3e343e1cd207ad71aa20N.exe
-
Size
490KB
-
MD5
7bce0437d8dd3e343e1cd207ad71aa20
-
SHA1
420576543e75f215ea357467a127058b94d1d136
-
SHA256
24d06d9db20ce0b44896ac3e02b99a032b7ad5b8c884ffa30046e1d41b7e9c6d
-
SHA512
c15735260e24768eb8881e37348cd4a90374f19d7f8c2c7e3d5380e86f4f216a249c2e3551be3169f7a34dc938b65d19ad29c81b7888aa63d29951d3e0da9a4f
-
SSDEEP
12288:hHJj3R/vGJl1xLdNb9l+FfeHO9HfxuvCM:hHx3R/voDpQCc2Z
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-