Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
download
-
Size
663KB
-
Sample
240826-ayrjgawfkr
-
MD5
184442631936da22f6a147793584f117
-
SHA1
1f8937c866d17f7b7f6caab443f4807fd3bf9560
-
SHA256
9dc37a59e57b58ce0f64c492addbffb510fbb1afe6833d57fb14661bdae4fa0f
-
SHA512
60868b0c074929c72659c31e8a044c8d603ebb038367affa2daddce90c1513b8a8316b9880ddb43f790c011ac5cd5c3a8ae8a1a16068f1e3f38370af6d96f0c9
-
SSDEEP
6144:e3f2uY6o0s8NMOeLynsLbGgfZQdXxeh4HUbsSeN:INMOeLUybGgfZQreh4HUb70
Static task
static1
Behavioral task
behavioral1
Sample
download.html
Resource
win11-20240802-en
Malware Config
Targets
-
-
Target
download
-
Size
663KB
-
MD5
184442631936da22f6a147793584f117
-
SHA1
1f8937c866d17f7b7f6caab443f4807fd3bf9560
-
SHA256
9dc37a59e57b58ce0f64c492addbffb510fbb1afe6833d57fb14661bdae4fa0f
-
SHA512
60868b0c074929c72659c31e8a044c8d603ebb038367affa2daddce90c1513b8a8316b9880ddb43f790c011ac5cd5c3a8ae8a1a16068f1e3f38370af6d96f0c9
-
SSDEEP
6144:e3f2uY6o0s8NMOeLynsLbGgfZQdXxeh4HUbsSeN:INMOeLUybGgfZQreh4HUb70
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Subvert Trust Controls
1SIP and Trust Provider Hijacking
1Virtualization/Sandbox Evasion
1