Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3N.exe
Resource
win10v2004-20241007-en
General
-
Target
6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3N
-
Size
96KB
-
MD5
824a6b9dba00d031e8282a817ffbc2b0
-
SHA1
1c061ba8e446e18fdd5abdefc04ac0f8b387f7c5
-
SHA256
6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3
-
SHA512
dd301f7dbb9f09e3c0a271e842e141c47ced836e32815c0cf7f073b9d54dc88b7b564a2bc7e3400878da109ba1c46b3ed64fb13a14724eafb45f0c79eb90ba74
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcI9nPbjTFdqV9bP/tuimm4W:V7Zf/FAxTWoJJ7TJ6RmR+Xm5uN9ddJj
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3N
Files
-
6d77a570c350a271724e66f10e9935392397c1a14efa378b1e302b466c77a4f3N.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: 21KB - Virtual size: 24KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imports Size: 1024B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE