Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

9

hxsyfzgj_5...DM.dll

windows7-x64

1

hxsyfzgj_5...DM.dll

windows10-2004-x64

1

hxsyfzgj_5...ad.dll

windows7-x64

1

hxsyfzgj_5...ad.dll

windows10-2004-x64

1

hxsyfzgj_5...an.dll

windows7-x64

5

hxsyfzgj_5...an.dll

windows10-2004-x64

5

hxsyfzgj_5...om.dll

windows7-x64

3

hxsyfzgj_5...om.dll

windows10-2004-x64

3

hxsyfzgj_5...30.exe

windows7-x64

1

hxsyfzgj_5...30.exe

windows10-2004-x64

3

hxsyfzgj_5...01.exe

windows7-x64

1

hxsyfzgj_5...01.exe

windows10-2004-x64

3

hxsyfzgj_5...��.exe

windows7-x64

1

hxsyfzgj_5...��.exe

windows10-2004-x64

3

hxsyfzgj_5...��.exe

windows7-x64

1

hxsyfzgj_5...��.exe

windows10-2004-x64

3

hxsyfzgj_5...��.exe

windows7-x64

1

hxsyfzgj_5...��.exe

windows10-2004-x64

3

hxsyfzgj_5...ln.dll

windows7-x64

1

hxsyfzgj_5...ln.dll

windows10-2004-x64

1

hxsyfzgj_5...ec.dll

windows7-x64

1

hxsyfzgj_5...ec.dll

windows10-2004-x64

1

hxsyfzgj_5... -.url

windows7-x64

1

hxsyfzgj_5... -.url

windows10-2004-x64

1

hxsyfzgj_5...��.exe

windows7-x64

8

hxsyfzgj_5...��.exe

windows10-2004-x64

3

hxsyfzgj_5...��.url

windows7-x64

1

hxsyfzgj_5...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2d7bd36651438dc46e8519dcaccff7fbbe838ee3e9b7f875893c7cf9a3493a1

  • Size

    2.4MB

  • Sample

    221127-bccnvsha69

  • MD5

    2bc93f4d5e0fbecb1dc0f00dd96bf45e

  • SHA1

    88a568b50ed9ce47fe2b00e6fd4fe651cf690f20

  • SHA256

    c2d7bd36651438dc46e8519dcaccff7fbbe838ee3e9b7f875893c7cf9a3493a1

  • SHA512

    2458201bec6dd554884a84385f50cd045561ec24cd5316148a8c63e546f7c54636b450ab148259a1f4be30076f3ed42f6f81e8a6a994f76a9baab90ec4585d42

  • SSDEEP

    49152:eLVpIzIe8+JEj80/MLM7L+3zdMVhCU704as3+t5ztROV8WVVVSFyX:EI02mj826M7LECjCAjOt5aBUYX

Score
9/10
upx

Malware Config

Targets

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/DM.dll

    • Size

      804KB

    • MD5

      c578b6820bda5689940560147c6e5ffc

    • SHA1

      922e50d89c9c44bdc205ef17aa57212b64e58852

    • SHA256

      3b6ddc32b800a18b21a819e842cbfdd57cb065fd92cc69545e0ef29b97cfd389

    • SHA512

      9f2a1bb5788ad245242d12968bbf198af2694a87c6e2342f14672e8c14e8489dd3319434592fc9b20f620557d0fa58482903d19c7f5ba32456a1e4076dc1bb85

    • SSDEEP

      24576:3rhlxaCsVb6KoTpZCFg6DTk1F2RjkjCQG:VWCsVb6KUpZ+hDg1F2d6

    Score
    1/10
    behavioral1behavioral2

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/EThread.fne

    • Size

      60KB

    • MD5

      206396257b97bd275a90ce6c2c0c37fd

    • SHA1

      3cae4506a033cf7e97156d5261f2a247c6270f42

    • SHA256

      64eef86745d7ae0168fec357099e2e952ce74ee19576d06cc8c8c65f210cc22c

    • SHA512

      4c23e52b5b23b305c3172e01dd205e15fda8f20f8b60776ba59d080bf05bbbca456a0ed232f2e2a2bf01d32efb913063f89fb4928bc4d5d1c1eb4c4979803455

    • SSDEEP

      768:r3gWNW3gyVNWTmOPMJcyS6K7viaViB9V5yHQ6Fq4oCaJa2OJK:TXkSTmOP0Cbu2BboCaKJK

    Score
    1/10
    behavioral3behavioral4

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/San.dll

    • Size

      342KB

    • MD5

      f1f2c76f4a836358c495bff6b2f30e45

    • SHA1

      b51695087916bdefb895d3fa1e0eb1ad7dc96fa1

    • SHA256

      d317f7595a9d94299751fe8207ba5520e43f57a4dcfada585577dea388a14a9a

    • SHA512

      2e33c3f719f959141eabe7758e0235928292fe5b747f73ed84372bc26659a9e6f2dbdbb806ef8ac786028157d7d52b72cc0a0e0af613c10fbba88e7bf01380e1

    • SSDEEP

      6144:8/v6GQaSb5ywXlpdoSUUzGJ3vbBUZKbCVFENvrae7vZ/bTGPaeE:ov0a85rXlsSzM6IvOe7vZzTrJ

    Score
    5/10

    • Drops file in System32 directory

    behavioral5behavioral6

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/com.run

    • Size

      260KB

    • MD5

      a50997b4c89c65c884962b7329f79482

    • SHA1

      0682991c12e6291e4cda784f9bcec9d94e929f99

    • SHA256

      ecff85bf05907c9806b66c8a18e21dbf689ed28c5fba9c5e3dc8a38a51d9c5de

    • SHA512

      273339549636c12b0faa634be1eaee78ef504df35014d7c82ac979eea4bde8a3d69f3b232dc49e8f3ccafa0a72edaf576a9d69ea031681d6a9ed9a5e0bfde9ab

    • SSDEEP

      3072:oE3SIWawqQX1yfkL7CfDyiOUAVvzUT3F4a3OMn08Mm/5zIuBEgWo0iM//Ke6N:A1nLO7PAhzUx4agasH//

    Score
    3/10
    behavioral7behavioral8

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/ds30.exe

    • Size

      310KB

    • MD5

      98020f9f4642ab00241e178e2be24004

    • SHA1

      b42a0acf49684c2e0a1e1113bfe9a95bee176557

    • SHA256

      536bc3ca62cddf208dde98cc305c6c8e0f26d92a9894deaaa488a6adf5a0712c

    • SHA512

      9732a7900776306a57eec2d5f0b02d2685a394b63f483fac43c722523b75ff4440796a843ef6ba1b382b79c0da8404c05cf92f85666a0aace68520d7e8a5dd2f

    • SSDEEP

      3072:qqInBS4xvS1OsBAzdkAAO9ly4SjvSedc9NjorpqhO3ma:qHLsBAzdkAAUy4Sjzdc9N8V7

    Score
    3/10
    behavioral10behavioral9

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/ds301.exe

    • Size

      310KB

    • MD5

      0fe1dc3df028070c32a4c98eb1ae8051

    • SHA1

      4367e38d5fca311e4101723090f4c57ec8ec1578

    • SHA256

      510330cbae48049c21f7556fa10b5b887bb8eba0f302f0eaee318bc002ee6c00

    • SHA512

      2a95b518c1d5c2032e9803b7fd7f1b044f95ca1a1afed888ae86ed98af77d6f4259b3ef3efeb487f636c3deb67bdd425fdfc06c9ba50f653aecbf8216495a267

    • SSDEEP

      3072:fqInBS4xvS1OsBAzdkTAO9ly4SjvSedc9NjorpqhEgL:fHLsBAzdkTAUy4Sjzdc9N8e

    Score
    3/10
    behavioral11behavioral12

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/ds30试用版.exe

    • Size

      70KB

    • MD5

      3a798202fc2151d6f81ff39fb4b18824

    • SHA1

      cbbac88a1abd72bbd4fc2881d65a1848f422c296

    • SHA256

      ec82c9d35d6dd30500c07b1c51f807ab8359419e964413227bc991f34a75ac42

    • SHA512

      cea31dba1697cd91b08aecf6a0527be8420ee4837ce71db1e70346da1f8fdf290ca1bae6cc312c22d7697ca673be44f195565f7fb3cd7ddebdf358a4733f5676

    • SSDEEP

      1536:74Lq3eztezVznHf/Y4+siTI8oFA46qUdD4c:reyVrHfUHyu

    Score
    3/10
    behavioral13behavioral14

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/ds30试用版(笔记本小屏幕用).exe

    • Size

      70KB

    • MD5

      cc886ac7b9ca389cc5ad438b71968055

    • SHA1

      0ba244e6b24b7f4a1775da5ce062c25c205ca9a8

    • SHA256

      87062f6a1b2dd83cd25e71fb9c40c178331cf35d1c4b31d799c2adcd36ae051e

    • SHA512

      964307456ec82608a4c73d2caf2db21bb17ca956acc0001cd5664c180ebaee696f511de2e8f0a4ed467da06833cb09269c7b27385dc9cc8d99f97368544a47a7

    • SSDEEP

      1536:hix4GTf3cAiUz13Wp9626ApvrlVJ4E5s:y4sciz1392rDd4Ms

    Score
    3/10
    behavioral15behavioral16

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/ds30(笔记本小屏幕用).exe

    • Size

      298KB

    • MD5

      38a6975080d0e999472454777719205c

    • SHA1

      1cc23b513378bf0470fb4fe7ed2f1c1ea282d77f

    • SHA256

      55a16071c6a2534ecc0df5f3afa3943642a6eead14423e496c3ed057173cd68e

    • SHA512

      0ddfdcc902d179c229b7cdc740acce072fcbe006543acdb04081cd7dcb0789caab34cbdc369de35f56c9e984701dd69581ee3b39c967085b5c58102bc2ef29b1

    • SSDEEP

      3072:+hInBS4xvS1OZki+aLQ/C4qJISMwilknfTYjoc5ige0vU6VW0:+6LcqQ/DqJIH9enfTQoYigewQ0

    Score
    3/10
    behavioral17behavioral18

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/krnln.fnr

    • Size

      1.0MB

    • MD5

      44e2ca67c060fbe3dc0d030149f5a478

    • SHA1

      5df61eb626bc3849893701942114609c1086d496

    • SHA256

      6ced19283dbbb95f264448f380592f4e98ba8228efca2f68821ab3ae61029d93

    • SHA512

      1a348c7585d78dd68c1d0e059ea1d7cea57c1aeff734f834f75025719b9fdd0e9bb16aebe75e15502a1b83106387eaa9493b8990999e0a68b62c1afdbc8cf45e

    • SSDEEP

      12288:rb0+sqCE6yy4bmhSd+1YCHYFZzktq0TNSARuOrRUVbNGvNXXYA/2b:AjE6+bhiHYF5kZI6uOrRUjYNXXYA/

    Score
    1/10
    behavioral19behavioral20

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/spec.fne

    • Size

      88KB

    • MD5

      51d7be0ca4431fec32d0ba0978cb2cae

    • SHA1

      1aa65ca721bd881b615b16602f6bc7cc4c7d74d8

    • SHA256

      1e4d44d3a865a766517057c199eda71e005e56c13fce2c4137b66d185a416986

    • SHA512

      5cf2214bc60dde261f44aa339ba1943f5c9b70337a11d064185224b3dcfc705e55386c95de280b6d05c4b60a318abbfa3d5728724c28dfc009d57c3bbfd76ef5

    • SSDEEP

      1536:DcrPILJRJT/DpWc6hVoabwhfoeW7JsVRj0:QrMW1ojfolax0

    Score
    1/10
    behavioral21behavioral22

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/安装前必看 -.url

    • Size

      167B

    • MD5

      14703ad7c9f75edc62fe1698d73ef098

    • SHA1

      650fa00366d58d3040c93096eb5d15a7ff19d4d9

    • SHA256

      79716415b7d3ab753abb41e0cb1dae03c1e344f64f7b7cbe30ace201404a42ef

    • SHA512

      4ec84a58d0f3095b377836b8d516f8699ae1a5aab03dc17f9d012272c9a94d42e6fee00dc5574a20ef88284ffa695ff9c1145cabe9631860e0b687facef82b68

    Score
    1/10
    behavioral23behavioral24

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/小菜破戒.exe

    • Size

      760KB

    • MD5

      edc7cfb7aef1925d7ece62ad826a035d

    • SHA1

      7d11d5860bb9b9817b7e170f0a31614e132994ac

    • SHA256

      dedea129a4d3bbd3a543f0b83e8e5cce7f38d10e3d6ec2a29de902a924af545c

    • SHA512

      5f86de5528fa4a51c5f5151932da2d387ffbf3ea350829ef33cbc38d4700fe99b5b6c3b96b7e7a94fc2467ced96737d2e9a74e8802c89467ec69f554ff730601

    • SSDEEP

      12288:oMC1HSAwx2if8mFgUxIX1kfzw+ryCI+DR5nWFpPoSLq:oTox2tVUaX6fzJr17ybU

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral25behavioral26

    • Target

      hxsyfzgj_56086/YY幻想神域辅助0804/最牛的单机游戏下载网站.url

    • Size

      76B

    • MD5

      f3a3a75babaac3ba5ed8dddf5125d76d

    • SHA1

      6e3c39f915ca393a6c88b8c67f74d7f1902fdcd9

    • SHA256

      eeb0f36f0d854bd9d61dea51b517098ddfae007389935a40343c1a2a3173d6f9

    • SHA512

      6d63e964b2c3a96db47072d4f53cb91e077081b4ab0764c1c1aadb58c0ddb7b79487e31cc7d7016055c78db65717a2471d1aacebf292388b30ddbb7ced96cc9c

    Score
    1/10
    behavioral27behavioral28

MITRE ATT&CK Matrix

Tasks