Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

9

查找文�...xt.dll

windows7-x64

1

查找文�...xt.dll

windows10-2004-x64

8

查找文�...um.dll

windows7-x64

3

查找文�...um.dll

windows10-2004-x64

3

查找文�....0.exe

windows7-x64

8

查找文�....0.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70c2a521275bc55bf655177844375cdb385a58af41c3e6184f1eb007aea573ab

  • Size

    3.9MB

  • Sample

    220929-q5vsgabag5

  • MD5

    070aec38cfa111446b9b707c60eec0e6

  • SHA1

    9a725a2be6a832d1c3fe0016e9a47eea7fa7c857

  • SHA256

    70c2a521275bc55bf655177844375cdb385a58af41c3e6184f1eb007aea573ab

  • SHA512

    5be5e9b8705948f8bc7cec69a78e7fe494c600b90c8cd77a9ce94ed2881535d2e65fe009c6ddbb4970f62cc9eca1f45252c48a0d2eef8fdb892c528b32c61bf9

  • SSDEEP

    98304:b2TTh0+D1mhC6svi6Pzv/5S8gT5wWCbPSVkvUQygyMq+B:b2TNUC6sviAzvhSorSGBygyO

Score
9/10
upx

Malware Config

Targets

    • Target

      查找文本的工具/doc2text.dll

    • Size

      98KB

    • MD5

      615e1b0629604dfdf0bf116dc834233e

    • SHA1

      ed481e4e81a427fb10189456128a19fe07a97cf7

    • SHA256

      a244a266cf5f11474e6f66913b8e17e4d6e6ab234cc7b3f0520c636472f86dcf

    • SHA512

      b1942f84dde0a2f47a3d69bc43114708343942e1ade57e0a88c45ae208f74b7e8cc043b8c2a3c9fc000ff73873c64285c5e0902a4c51ff3a0f8b04d6052d0549

    • SSDEEP

      3072:pVyI+0yrbsg5rZNF6cwThl5vjqvdkxpIP+Rhy:Ls0cVHNF1wdrbqvqEP

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      查找文本的工具/pdfium.dll

    • Size

      3.9MB

    • MD5

      6ab32a9edf06790519e5b12e886e6a85

    • SHA1

      f31cb65778a9aed8f42330c86cb3f1d06617ceb7

    • SHA256

      30643c8902beccde5c0e32942725ba29d5c1f4c0ca1c6c9973c8481be0d81bf9

    • SHA512

      6c97f9e46f195bf9aae8806921b56e47607b149e09ea14f2907d8c2cab92fd9ecd739c71ea54381603589c672a6f6096e1c752beff882872d6d653ec7b473eff

    • SSDEEP

      98304:wH0RKNcPj1jM3CfyS1NW4RRbtRjPaylpwn2CICxE:NRKSjMSySbW43LPawCICx

    Score
    3/10
    behavioral3behavioral4

    • Target

      查找文本的工具/搜索文本2.0.exe

    • Size

      2.1MB

    • MD5

      ee798a9e0c17f25483647105701265f8

    • SHA1

      17d3454aaf4366cb76a571872993bc11d515ab76

    • SHA256

      2aeda7c0514b22c5fcaccc58343eead411ffd23a01a4e3431799affe354d7a97

    • SHA512

      1e44c2568a7190c39fe9277446870e60bf4786bba823300d2256662f808dec38a04bf035a914b961d4060c8bdd9bab867f00636eae8345e2f458b21c3dccfcad

    • SSDEEP

      49152:rctKaux50Mj2I6/mGkJD6MTRV3MH4qQjuAfPSadBzDxJMxT1DH0Z7p+8:QaxyK2QBV8YXfBdBzDzMxZH0lp+8

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral5behavioral6

MITRE ATT&CK Enterprise v6

Tasks