Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

FastCopy/FastCopy.exe

windows7-x64

6

FastCopy/FastCopy.exe

windows10-2004-x64

6

FastCopy/FastEx64.dll

windows7-x64

10

FastCopy/FastEx64.dll

windows10-2004-x64

10

FastCopy/FastExt.dll

windows7-x64

10

FastCopy/FastExt.dll

windows10-2004-x64

10

FastCopy/FastExt1.dll

windows7-x64

10

FastCopy/FastExt1.dll

windows10-2004-x64

10

FastCopy/FcHash.exe

windows7-x64

1

FastCopy/FcHash.exe

windows10-2004-x64

1

FastCopy/fcp.exe

windows7-x64

6

FastCopy/fcp.exe

windows10-2004-x64

6

FastCopy/setup.exe

windows7-x64

1

FastCopy/setup.exe

windows10-2004-x64

1

FastCopy64...py.exe

windows7-x64

6

FastCopy64...py.exe

windows10-2004-x64

6

FastCopy64...64.dll

windows7-x64

10

FastCopy64...64.dll

windows10-2004-x64

10

FastCopy64...xt.dll

windows7-x64

10

FastCopy64...xt.dll

windows10-2004-x64

10

FastCopy64...t1.dll

windows7-x64

10

FastCopy64...t1.dll

windows10-2004-x64

10

FastCopy64/FcHash.exe

windows7-x64

1

FastCopy64/FcHash.exe

windows10-2004-x64

1

FastCopy64/fcp.exe

windows7-x64

6

FastCopy64/fcp.exe

windows10-2004-x64

6

FastCopy64/setup.exe

windows7-x64

1

FastCopy64/setup.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    da457d2a49aa4e71f5724c46059847103529b14a077cc9dc9c1a3aaad5b3c06e

  • Size

    1.1MB

  • Sample

    221105-qb2c6aaahj

  • MD5

    f968b003725331c1714d3e3ad31ced83

  • SHA1

    4e3d71ee883250a960df0affbf5710102bf9d1b9

  • SHA256

    da457d2a49aa4e71f5724c46059847103529b14a077cc9dc9c1a3aaad5b3c06e

  • SHA512

    3265bdad16b23d66b84eff0e0cb8b568702762138068517b7bad8060895a20afb28535dc82eb81f6fe30ce4f97a9fdfabea18ae378614d054971ad4f58884d7a

  • SSDEEP

    24576:ppJRkvVv5TsmnD95F3ymzma+fPcJlgQ4yx4MFDKCet2d3f2v4:pTAfTschyrfPcJlgKPD9etQY4

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      FastCopy/FastCopy.exe

    • Size

      814KB

    • MD5

      c424a2602a861fa2c8835aedf97d38db

    • SHA1

      33a65d8a65db9af10470f3e258096c10aac5c3eb

    • SHA256

      b0a9db46fb5bec5e17211d8480c249202e95feb4598d930229a75b3d47f3de2c

    • SHA512

      215874d929f60360baf1462b708903c329552eb3fb969ecdcc2f2155024fdb93e9fffd0b3a21490b5b07b84092beeb4e09df61a9c208637d50808319cfe7d983

    • SSDEEP

      24576:6UhG9XdLA2TlZLw0Ct8x6czOzLMHmv5RuTUZ62Zeyol:NOXdXxyQHy8TE62ZA

    Score
    6/10
    evasiontrojan
    behavioral1behavioral2

    • Target

      FastCopy/FastEx64.dll

    • Size

      255KB

    • MD5

      07d933b296ebd2d95f8957918e17d856

    • SHA1

      f35381f2048f0d51832632cbfae100b6c8d285f4

    • SHA256

      f1a71ca5f2859befa7e5c098342ea2a36dd54c5a3d4b8e8b2c02439ce77b38b1

    • SHA512

      bcf52c94dd88b5bc3c355a2a6fd21677aa4d730d27c33a19d68b7f6d043267d460d53d3045ac3a93d79e3b4e22506028ddb9a5b657b81890f0ce3974cf4b9e7e

    • SSDEEP

      6144:avn7m7fGtlq8jJtUWqCQmn7j68TBAwQrOu:5Gtlq+HhP68T6Su

    Score
    10/10
    persistence
    behavioral3behavioral4

    • Target

      FastCopy/FastExt.dll

    • Size

      200KB

    • MD5

      85f7d79d6eb934a70fb1eb133ea8aa63

    • SHA1

      6472154b2bd522061b4221a20961617d2bf7c3b5

    • SHA256

      eb06c6977d06ebed8393a4ba402d0f82dc8dcbab9a2959cd5f893c5ffd0452e5

    • SHA512

      4425e7435cddcc3dbff3db737260be6e70cfa9aacf67c6193670ef7d7da35ddfa63056bdb83582aaf66400555a23a2ac7b8cd51a040772fed8eb6f6ed7193adc

    • SSDEEP

      3072:mIIIIP9aSch87pkHM28BS2Dy2OFk/4TBf3k1a6t4jY9Od:mIIIIP9aSI871BjDl4TBfsP39Od

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence
    behavioral5behavioral6

    • Target

      FastCopy/FastExt1.dll

    • Size

      200KB

    • MD5

      85f7d79d6eb934a70fb1eb133ea8aa63

    • SHA1

      6472154b2bd522061b4221a20961617d2bf7c3b5

    • SHA256

      eb06c6977d06ebed8393a4ba402d0f82dc8dcbab9a2959cd5f893c5ffd0452e5

    • SHA512

      4425e7435cddcc3dbff3db737260be6e70cfa9aacf67c6193670ef7d7da35ddfa63056bdb83582aaf66400555a23a2ac7b8cd51a040772fed8eb6f6ed7193adc

    • SSDEEP

      3072:mIIIIP9aSch87pkHM28BS2Dy2OFk/4TBf3k1a6t4jY9Od:mIIIIP9aSI871BjDl4TBfsP39Od

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence
    behavioral7behavioral8

    • Target

      FastCopy/FcHash.exe

    • Size

      311KB

    • MD5

      b3e19c569fd0f0a9a5f0b0f06e66a159

    • SHA1

      59d357ce056c6c63b3ee1a0e918ba12a24377790

    • SHA256

      3e19f25b72eab40d25d83fc0f581c92b76a6226757bab94a45826dbe40f5896d

    • SHA512

      3e0e192ec1ae1fb1bd26fe670b02fa49c4a3feebfc26c86aa47c56444bae7c13f9407b51eeefc76e79aa57b64385f953cbcebb8386dfd539631a57739953361c

    • SSDEEP

      6144:zIIII89r1ECeCg9E9/mjSFxabdOmPuqLH3rwTBUjrh3fx9OcHg:YEr9EBgSTabwadH3rwTyh3fxM6g

    Score
    1/10
    behavioral10behavioral9

    • Target

      FastCopy/fcp.exe

    • Size

      852KB

    • MD5

      35d1edad8d94a4f8552eabafb2eba364

    • SHA1

      066520330174a7da2b273bce2eee774948cb03e9

    • SHA256

      755767d175b99d8df8e1aeb1547862626ad98d0b5eaa6493a3164e6bd2d654d1

    • SHA512

      90127c84627d5a7be2346ddd34ab3f6f4fe27c70693e38892df7e7c0ee89a845af2d1a341bb6b64cee4142bf3494ae51a5c64922db7b0f4676b8ed797107d0bc

    • SSDEEP

      24576:YaFW4EI9Q8auhUWQLcloUQGT//4vZ8ynn0:VnXtQRPGTn4vZN0

    Score
    6/10
    evasiontrojan
    behavioral11behavioral12

    • Target

      FastCopy/setup.exe

    • Size

      462KB

    • MD5

      aedf39227a3459ebf6ece33ed4ec9d08

    • SHA1

      66a33cf576e98edd06abfba7870fb22698611559

    • SHA256

      9972ae63a5f92e5a735acacad5951b242af5d71d928ec66e6e227e514da594d1

    • SHA512

      e4cb4b412013c2057a289f9b0f9145fc52a2a6a47d0dbf1b9eeb8cf858010d9ee043313ed6980a277d815473c2d71835f7dca11a61584171e47709633bff026c

    • SSDEEP

      12288:dI8Nt9Ftm9sCBkcx/agGa+obL7vCIIIsmg5TE70apDRqthMdM5yGt:dI8NUAxIvC/IsxTE71eyGt

    Score
    1/10
    behavioral13behavioral14

    • Target

      FastCopy64/FastCopy.exe

    • Size

      959KB

    • MD5

      bc1e8c0d6191fd8cf69118cb7eca1631

    • SHA1

      023986eedfe7d348b7e5b80ecde8d74c4a773c07

    • SHA256

      d16ce1ec19dfe22a83ea17338b80b7fed27abe52bed85282f043508584adace2

    • SHA512

      514376f7f96424fcecdeea37519b5cc53f826a6673962dc38925ea917192ed5ddcc1d24c261745f9d7a54f1a30b9d4f6661de6691eb0e5b65591c042f4072e01

    • SSDEEP

      24576:rPGtlq1Nwkh/dnZ7Rn8IUV0LSgTSXQ61l0Zu8Ai:rPGtlq1N/Zdrd7LtTkyZ7

    Score
    6/10
    evasiontrojan
    behavioral15behavioral16

    • Target

      FastCopy64/FastEx64.dll

    • Size

      255KB

    • MD5

      07d933b296ebd2d95f8957918e17d856

    • SHA1

      f35381f2048f0d51832632cbfae100b6c8d285f4

    • SHA256

      f1a71ca5f2859befa7e5c098342ea2a36dd54c5a3d4b8e8b2c02439ce77b38b1

    • SHA512

      bcf52c94dd88b5bc3c355a2a6fd21677aa4d730d27c33a19d68b7f6d043267d460d53d3045ac3a93d79e3b4e22506028ddb9a5b657b81890f0ce3974cf4b9e7e

    • SSDEEP

      6144:avn7m7fGtlq8jJtUWqCQmn7j68TBAwQrOu:5Gtlq+HhP68T6Su

    Score
    10/10
    persistence
    behavioral17behavioral18

    • Target

      FastCopy64/FastExt.dll

    • Size

      200KB

    • MD5

      85f7d79d6eb934a70fb1eb133ea8aa63

    • SHA1

      6472154b2bd522061b4221a20961617d2bf7c3b5

    • SHA256

      eb06c6977d06ebed8393a4ba402d0f82dc8dcbab9a2959cd5f893c5ffd0452e5

    • SHA512

      4425e7435cddcc3dbff3db737260be6e70cfa9aacf67c6193670ef7d7da35ddfa63056bdb83582aaf66400555a23a2ac7b8cd51a040772fed8eb6f6ed7193adc

    • SSDEEP

      3072:mIIIIP9aSch87pkHM28BS2Dy2OFk/4TBf3k1a6t4jY9Od:mIIIIP9aSI871BjDl4TBfsP39Od

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence
    behavioral19behavioral20

    • Target

      FastCopy64/FastExt1.dll

    • Size

      200KB

    • MD5

      85f7d79d6eb934a70fb1eb133ea8aa63

    • SHA1

      6472154b2bd522061b4221a20961617d2bf7c3b5

    • SHA256

      eb06c6977d06ebed8393a4ba402d0f82dc8dcbab9a2959cd5f893c5ffd0452e5

    • SHA512

      4425e7435cddcc3dbff3db737260be6e70cfa9aacf67c6193670ef7d7da35ddfa63056bdb83582aaf66400555a23a2ac7b8cd51a040772fed8eb6f6ed7193adc

    • SSDEEP

      3072:mIIIIP9aSch87pkHM28BS2Dy2OFk/4TBf3k1a6t4jY9Od:mIIIIP9aSI871BjDl4TBfsP39Od

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence
    behavioral21behavioral22

    • Target

      FastCopy64/FcHash.exe

    • Size

      369KB

    • MD5

      ebdb08856c1299fc14c770ce56dbe3ca

    • SHA1

      1f809b64bd3e66fe513b2ac6b5c4a5e77efb22c0

    • SHA256

      b8ec4190e2a5877d02608b4efee80ecdac0860931e0000ed4d05ee90f6a25ed5

    • SHA512

      89790ce7c16b98f5848ad8b7bae3e39ed2f2edb038ed4c0ce6986af74d67cc54d2345ab3c53f65869b08e71f5326cece199bebcff09e5708967e0c659b786ec9

    • SSDEEP

      6144:Gdn7m7fGtlqB5vJ2yMXXKnghDUziwjkAPJVTB8u/k/6HiGOa:TGtlqrwTXXKngZvwHPJVTxHiNa

    Score
    1/10
    behavioral23behavioral24

    • Target

      FastCopy64/fcp.exe

    • Size

      995KB

    • MD5

      15c5f2081119540ee775c61a93dc5321

    • SHA1

      80b9e9cdaca0f33dbdf60711508d9e9b1c516313

    • SHA256

      91aa40e224466429b37dcecc5d8e4d0c688b3bf7e16700f1ef2f00af414387eb

    • SHA512

      6941f58ab126df926db0250fa45dfad8318e2506d4416eb39aa936b501b4100fc73c0224952ba7e56e3d39b3db41ebab683737869553f7dcfb6b7f7f191f6874

    • SSDEEP

      24576:GGtlqBH/gUKPV1ar+f9w3NJTzYiNZ8yTO:GGtlqBHeN1+8K3fTk+ZY

    Score
    6/10
    evasiontrojan
    behavioral25behavioral26

    • Target

      FastCopy64/setup.exe

    • Size

      552KB

    • MD5

      505e821747d2ac811934ba92ec9dca03

    • SHA1

      deaa87cc9e9d6a6a6339582296ad898c73b62a9a

    • SHA256

      5f19cc2cbdeb0d7c32778f536e3cefa5398f6137cf462158a6a35af8d237ce2a

    • SHA512

      9d278d334d36227582a22308278a1ed56d85bc8239067b4433aa07b2623259662f7649cb2f98edbec47061f86333f73a8cf1cff7ed85f218bf222014be4b5678

    • SSDEEP

      12288:vGtlqkRwFw5PwhkmvZm7xBDsS+fbom5TdtKRq4LLx:vGtlq8wFwvmxexBv+fbJTdt8DLx

    Score
    1/10
    behavioral27behavioral28

MITRE ATT&CK Enterprise v6

Tasks

static1

Score
N/A

behavioral1

evasiontrojan
Score
6/10

behavioral2

evasiontrojan
Score
6/10

behavioral3

persistence
Score
10/10

behavioral4

persistence
Score
10/10

behavioral5

persistence
Score
10/10

behavioral6

persistence
Score
10/10

behavioral7

persistence
Score
10/10

behavioral8

persistence
Score
10/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

evasiontrojan
Score
6/10

behavioral12

evasiontrojan
Score
6/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

evasiontrojan
Score
6/10

behavioral16

evasiontrojan
Score
6/10

behavioral17

persistence
Score
10/10

behavioral18

persistence
Score
10/10

behavioral19

persistence
Score
10/10

behavioral20

persistence
Score
10/10

behavioral21

persistence
Score
10/10

behavioral22

persistence
Score
10/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

evasiontrojan
Score
6/10

behavioral26

evasiontrojan
Score
6/10

behavioral27

Score
1/10

behavioral28

Score
1/10