Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

quarantine...a5.exe

windows7-x64

10

quarantine...a5.exe

windows10-2004-x64

10

quarantine...Uv.exe

windows7-x64

8

quarantine...Uv.exe

windows10-2004-x64

8

quarantine...cc.exe

windows7-x64

10

quarantine...cc.exe

windows10-2004-x64

10

quarantine...Ja.exe

windows7-x64

10

quarantine...Ja.exe

windows10-2004-x64

10

quarantine...8e.exe

windows7-x64

3

quarantine...8e.exe

windows10-2004-x64

3

quarantine...zx.exe

windows7-x64

7

quarantine...zx.exe

windows10-2004-x64

7

quarantine...FJ.exe

windows7-x64

9

quarantine...FJ.exe

windows10-2004-x64

9

quarantine...on.exe

windows7-x64

10

quarantine...on.exe

windows10-2004-x64

10

quarantine/random.exe

windows7-x64

quarantine/random.exe

windows10-2004-x64

3

quarantine..._2.exe

windows7-x64

10

quarantine..._2.exe

windows10-2004-x64

10

quarantine..._3.exe

windows7-x64

10

quarantine..._3.exe

windows10-2004-x64

10

quarantine..._4.exe

windows7-x64

10

quarantine..._4.exe

windows10-2004-x64

10

quarantine..._5.exe

windows7-x64

10

quarantine..._5.exe

windows10-2004-x64

10

quarantine...me.exe

windows7-x64

10

quarantine...me.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    quarantine.7z

  • Size

    24.6MB

  • MD5

    f9e59b0217c1676ef91a3754ed3e7cd6

  • SHA1

    96393b22d27d6f6a3cb3ec786f12b1630f06d691

  • SHA256

    0d7db567df0c03f033db70107c7699d21fdc046d3b502160e45b6c26a7a5291d

  • SHA512

    53281172b57773847cd97e8127ac3fdf99059321e6928ba5cab7954ccf1ac0f887bf6134ae8b163306aa5f01ce9ff751fea2d237c2138263a122a251abb4e44f

  • SSDEEP

    393216:MW41YxjRBsR0arpMBfHBpuM37XLzb+2lJMq/VYFqyY14Dpbo0WroM3AF:M1YxjRBshpMBfhpN77zoqSFqyIfb0NF

Score
3/10

Malware Config

Signatures

  • Unsigned PE 13 IoCs

    Checks for missing Authenticode signature.

Files

  • quarantine.7z
    .7z
  • quarantine/30adb2328b17bd15cdeb5059c621bd6e9bf0b7e03dd2cdfbadfc837737d424a5.exe
    .exe windows:5 windows x86 arch:x86

    be41bf7b8cc010b614bd36bbca606973


    Headers

    Imports

    Sections

  • $TEMP/Influenced.dotx
  • $TEMP/Mag.dotx
  • $TEMP/Medium.dotx
  • $TEMP/Obituaries.dotx
  • BrightonInvestigator/Ad.dotx
  • BrightonInvestigator/Facility.dotx
    .cab
  • Ak
  • Antiques
  • Broker
  • Greenhouse
  • Nowhere
  • Numerical
  • Poland
  • Startup
  • Strongly
  • There
  • Trim
  • Words
  • BrightonInvestigator/Pick.dotx
  • BrightonInvestigator/Rfc.dotx
  • BrightonInvestigator/Sacrifice.dotx
  • quarantine/FKza3Uv.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • quarantine/af8fa1c9ee24035cb342fee0773983a2aa4af97b630ccc6b38aef13b0f8602cc.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • quarantine/d2YQIJa.exe
    .exe windows:6 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/f2b4b0d3be4e4be0527e1a2a4255df1ce093829e31212afdbd34f0dadc6b398e.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • quarantine/jROrnzx.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • quarantine/kgI01FJ.exe
    .exe windows:6 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/monthdragon.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • quarantine/random.exe
    .exe windows:4 windows x86 arch:x86

    54dab30209471bbff34b1448f5c980d2


    Code Sign

    Headers

    Imports

    Sections

  • quarantine/random_2.exe
    .exe windows:6 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/random_3.exe
    .exe windows:4 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/random_4.exe
    .exe windows:4 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/random_5.exe
    .exe windows:6 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections

  • quarantine/sHN20me.exe
    .exe windows:6 windows x86 arch:x86

    2eabe9054cad5152567f0699947a2c5b


    Headers

    Imports

    Sections