Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

calc/calc/lpk.dll

windows7-x64

8

calc/calc/lpk.dll

windows10-2004-x64

8

calc/calc/...��.exe

windows7-x64

1

calc/calc/...��.exe

windows10-2004-x64

1

calc/calc/...rk.url

windows7-x64

1

calc/calc/...rk.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9577c84126c3a23859e9ef52f3b656e0a78c4b6c385b62e696642c7692c6cf2

  • Size

    60KB

  • Sample

    221127-m1nxksfd2s

  • MD5

    3ed070eb342a15e8d53ce8e83828a855

  • SHA1

    08d1b3a04e6c73550097fb4fa9316869c42a379c

  • SHA256

    e9577c84126c3a23859e9ef52f3b656e0a78c4b6c385b62e696642c7692c6cf2

  • SHA512

    15f51d2468e43a453c5f0e9f32cedddb5e5e08b091945ec68879bf8427d4956b32e25313e06813166bddef9c27c60b06475c0df2bdc11832e90d037d1ece9a86

  • SSDEEP

    1536:Crbg8IxQ4EtfAF800fcBdJlkp5oJ9FIibGi5:ObgjNE1AO00EdrkDoJ9fj

Score
8/10
upx

Malware Config

Targets

    • Target

      calc/calc/lpk.dll

    • Size

      46KB

    • MD5

      77774d76e724ae9017bac8609947899c

    • SHA1

      efd281c15cc901fee9c64f88fd0b74eb1fa82b57

    • SHA256

      2017c37d13d1c5475cb1532f06a87ae60b1b5852a405a2b6c24d881efe7aba08

    • SHA512

      68d88ff7c3e130f2ac25e73ba92398dd2b8a6dba26980395996ed6c8e7a4a404de30ce40f9819925afe55040c8f69e6461b7f8349d8de5f2ccdf19116407699f

    • SSDEEP

      768:IUWUAohfjiT5ediDgEYe5eWomHEo2fKEFCLxu5qr7Ho73UEWkGpIfxMC:10qfWT5MbEYme9aLMBCVuEXID3x+C

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      calc/calc/奖金计算器.exe

    • Size

      56KB

    • MD5

      309a111ce30c6fb64311e8bcbce9e7b1

    • SHA1

      d0d72560c632a1c6937bdd30bcb4c25ec460ca3e

    • SHA256

      2c8f32dcc2eb5c306d9b4dd5ff110cf55c7b98d77092d90306219481c52fd10b

    • SHA512

      0b4b06e1c42b1c77b78918412518648c661b4b53719a0dcfec1d39e6ab353157ebe18e2489f25b5da8d943d81d92e35a95e1ec734bbbdf5599b34e8fe5bae483

    • SSDEEP

      768:XrF4r39CbHQdNTQ+baCcP3erDBsuBk3kW0ZLHoW2:bF4T9CbY1Q+vcP+Di1S1

    Score
    1/10
    behavioral3behavioral4

    • Target

      calc/calc/如果无法运行,请先安装.NET Framework.url

    • Size

      196B

    • MD5

      5877a25271aeedf2323d4f62940775ed

    • SHA1

      af44a6e76161857b9a357ba97b93fe3c3d5a21fa

    • SHA256

      8378369d6b22a5bf0396d52f35776f9b2b2ecfcfee0044deb83a0300ceaa56db

    • SHA512

      e91c93b7395ad05a0b8240428e47d6d38a399359e77de8c2f7e4ccda841e0e9b2c36a0dd976edf4d2dc57544d9b55432f8f1774eae79a14ed8c232ae9470e540

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v6

Tasks