Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
9Static
static
19/index.html
windows7-x64
119/index.html
windows10-2004-x64
13.ESFramew...pk.dll
windows7-x64
93.ESFramew...pk.dll
windows10-2004-x64
9Images/Public/lpk.dll
windows7-x64
9Images/Public/lpk.dll
windows10-2004-x64
9MailToCode...pk.dll
windows7-x64
9MailToCode...pk.dll
windows10-2004-x64
9htdocs/plu...pk.dll
windows7-x64
9htdocs/plu...pk.dll
windows10-2004-x64
9jycms/捷�...pk.dll
windows7-x64
9jycms/捷�...pk.dll
windows10-2004-x64
9lpk.dll
windows7-x64
9lpk.dll
windows10-2004-x64
9torrent/to...pk.dll
windows7-x64
9torrent/to...pk.dll
windows10-2004-x64
9定时任�...pk.dll
windows7-x64
9定时任�...pk.dll
windows10-2004-x64
9General
-
Target
af4371a739d4a58f572705594b3c57f3e6934367ad1722cc56f9e6468ff701b6
-
Size
1.5MB
-
Sample
221125-3ynf2abb5x
-
MD5
3e1d0b6c66f0b4b34aaa12bac2540065
-
SHA1
db726432e1b6fce0df199e0b03d0cc0e82aa4e30
-
SHA256
af4371a739d4a58f572705594b3c57f3e6934367ad1722cc56f9e6468ff701b6
-
SHA512
2665045041da6fe3300d437c9b32984f0c8c81f1913cc0601f3a87b3c2066237189f3de0babda62b08b9452ce38d9c56638cd499612a514bc63eeef6bdb5b18b
-
SSDEEP
24576:dXPGAaI7ym5S8WXPGAaI7ym5S8GXPGAaI7ym5S8HXPGAaI7ym5S8lXPGAaI7ym5j:tPDym5S8APDym5S8QPDym5S83PDym5Sm
Static task
static1
Behavioral task
behavioral1
Sample
19/index.html
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
19/index.html
Resource
win10v2004-20221111-en
Behavioral task
behavioral3
Sample
3.ESFramework.Demos.P2P/ESFramework.Demos.Client/bin/Debug/lpk.dll
Resource
win7-20221111-en
Behavioral task
behavioral4
Sample
3.ESFramework.Demos.P2P/ESFramework.Demos.Client/bin/Debug/lpk.dll
Resource
win10v2004-20220901-en
Behavioral task
behavioral5
Sample
Images/Public/lpk.dll
Resource
win7-20221111-en
Behavioral task
behavioral6
Sample
Images/Public/lpk.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral7
Sample
MailToCode/MailTo/MailTo/bin/Release/lpk.dll
Resource
win7-20221111-en
Behavioral task
behavioral8
Sample
MailToCode/MailTo/MailTo/bin/Release/lpk.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral9
Sample
htdocs/plugins/editor/ueditor/third-party/snapscreen/lpk.dll
Resource
win7-20221111-en
Behavioral task
behavioral10
Sample
htdocs/plugins/editor/ueditor/third-party/snapscreen/lpk.dll
Resource
win10v2004-20220901-en
Behavioral task
behavioral11
Sample
jycms/捷扬文章系统0.4.1/程序文件/lpk.dll
Resource
win7-20221111-en
Behavioral task
behavioral12
Sample
jycms/捷扬文章系统0.4.1/程序文件/lpk.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral13
Sample
lpk.dll
Resource
win7-20220812-en
Behavioral task
behavioral14
Sample
lpk.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral15
Sample
torrent/torrent/lpk.dll
Resource
win7-20220812-en
Behavioral task
behavioral16
Sample
torrent/torrent/lpk.dll
Resource
win10v2004-20220812-en
Behavioral task
behavioral17
Sample
定时任务程序/lpk.dll
Resource
win7-20220812-en
Behavioral task
behavioral18
Sample
定时任务程序/lpk.dll
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
19/index.html
-
Size
4KB
-
MD5
9b4764883a609aa87ae954d89ae36a5f
-
SHA1
960ed127e50d70c3d36d827006030194c4f480a0
-
SHA256
ce74374ab8ecdc49a65dc95432c0549ad7d9a70d0cc080dab7b4ea5483adf8b4
-
SHA512
31da3abb6f9ce7348668ba19af4b0ef3ac42e40a8e9760c884d305e445307c20ba01e055a1e323b737330319425f9ae61ae44366ba3e2959563a1762d36dea81
-
SSDEEP
48:qu/Q+My9jzIoXBANp4zAB8AutlEahJ4QUiJy8xYyRY5NafPFg5gahbzRT4nJGCTg:vMcIoPLHhJZnxYyA+8hpKIL/ZGi
Score1/10 -
-
-
Target
3.ESFramework.Demos.P2P/ESFramework.Demos.Client/bin/Debug/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
Images/Public/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
MailToCode/MailTo/MailTo/bin/Release/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
htdocs/plugins/editor/ueditor/third-party/snapscreen/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
jycms/捷扬文章系统0.4.1/程序文件/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
torrent/torrent/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-
-
-
Target
定时任务程序/lpk.dll
-
Size
217KB
-
MD5
aa28054265b1c2fb7748fb21ab5984a7
-
SHA1
2fd0396a49a7024ce53783995c4b288e7c596342
-
SHA256
004785903afd37cace27aae4ed28b2130c2691798b82132debb42659d223b615
-
SHA512
aaa000f7947a92e834b3175facfcefd1d9f53e3204f1b26f10c19c4c1b5ea720b6d6fc45d88a909ca0dbe425c39a6885496f8673e4ff1ebff6a709a351322e28
-
SSDEEP
6144:u24mCyHAWyPgWITYJ0Ax9N17xM2lxq27Wo/GEvdt:u24xvPgWGYj9X7xM2Lq27D/GEvdt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-