Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

PC6下载站.js

windows7-x64

1

PC6下载站.js

windows10-2004-x64

1

新版CF�...��.exe

windows7-x64

9

新版CF�...��.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    933b893bc9bb13cdf421d4fb1fd832d7bc3f89a7acae9739adf91d41abadb1f6

  • Size

    2.5MB

  • Sample

    221127-f96enagd41

  • MD5

    cfe7437022161d60d4f107c628f0fe1b

  • SHA1

    47e4b23ee60b60c3df2954404fcb36d28b606556

  • SHA256

    933b893bc9bb13cdf421d4fb1fd832d7bc3f89a7acae9739adf91d41abadb1f6

  • SHA512

    3235f342f703fb4fc69e81da7a64066c3526aeda40251d2b8c5c4fc3097436a426f6a54ca179f28949d9519ef58b3204faa33139caf7aa2a123c6d5f1ba52eb9

  • SSDEEP

    49152:dhz9R1UQnbWCowtCuybS3uQ32bWuKGj5quJjQr6tErg9Vc2nRhLclTI:P5vKCo4CuqU2SNGjMuJjQm8YVPnwTI

Score
9/10
upx

Malware Config

Targets

    • Target

      PC6下载站.htm

    • Size

      47KB

    • MD5

      29e8ed5371c7a86c1f2d9ed13ffd39ee

    • SHA1

      607917c9f56b14679e9e770a71c21efbb99f20c4

    • SHA256

      eed831dbd59106783ef32ec0d0c58bae792ba84ecc208f48b58035c1d14196a7

    • SHA512

      5e74f60773d4d0160e05897c705957c7fd1be74ede7add782c53d6ecd5f82ebeaf550953b4094cd539526f3e4f25e347a6c9782cf7524eb10df0f24e7155fd94

    • SSDEEP

      384:+oSLKNQ7xQzbsiSglkq7W16rUZkQYE/4729UtJ81hbWxI715SLxVr8FQ:+oPNfYg7NUQ24WDW81s8FQ

    Score
    1/10
    behavioral1behavioral2

    • Target

      新版CF刷枪软件(免费刷永久雷神).exe

    • Size

      3.5MB

    • MD5

      9f02058f4d2ed88c6ec3426590da55b7

    • SHA1

      de444b707eb9d3747ddf68786f91972e4c083e84

    • SHA256

      ab250b019caad807cf8b352d8d0db67e7bcab2779cd56d7b0c7459d9d7276534

    • SHA512

      f07fee09d1b0128dadb087b71e98a9854555db0d7e897ba73261cd9bcc7648a9eff837ae3f9aba0d6d4205fc666d0886f63b14fd1ae3838cda2fb6e7bd0f81e8

    • SSDEEP

      49152:icEM3M2/3GMUapTZaqdwk0c05HGiBu+s8KuqGaX0ToIBAUZLY8m:Rbc2PGMRYqdwkLcHHBdJBAUZLm

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks