Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    996f884cba8ebd5af190ece5f3c47b408474e4b8a0ca64949588f521bab6377e

  • Size

    8.0MB

  • Sample

    221127-xk95zsba65

  • MD5

    8c7606bfb6037815265196e57152ec69

  • SHA1

    3cf55944ff7ac15d252880f7cd5e57c22f787812

  • SHA256

    996f884cba8ebd5af190ece5f3c47b408474e4b8a0ca64949588f521bab6377e

  • SHA512

    2418b6df8ea64b408f49e3e5982182f26d88e314402292f6ef860005ff32aaaf7fc2b07bf25531c6a83a8dd4a1fa125aaa237ea055ce5456798c2d13b39a196c

  • SSDEEP

    196608:KkEmeEYZcccHVn6fs+0iEcQnruJhLnZVFH6Iz3YKAeu+J2oAnP3owxopfEGI9Z:KkiZ3LSi7Er8hLnZVUuJjMP3owx6I9Z

Score
8/10
upx

Malware Config

Targets

    • Target

      10901268/10901268/DeSmuME_VS2008.doyo000

    • Size

      3.8MB

    • MD5

      cb6ea4958fb91ea80401ddb5885b5f63

    • SHA1

      75a204ddb91a369758daa3b41afdc9275177df10

    • SHA256

      35e0fd8debbebff24bfbf3f590dd728e8d95f69c820bc444bf131d77df854206

    • SHA512

      6523f270e4fba9ed5827634302e4d6bfec3af325bc43fd1bdb9910cee0b8f30f1c98c20bf00101977fb57c28c9d218fef6eb5e0be6496b0ae8d62d4599140f49

    • SSDEEP

      49152:yRHnFJqBdesBs6TrYAcUAODdG5d0FZTH+pFTd:YFJMeF6TrbHAadG5dwpq

    Score
    1/10
    • Target

      10901268/10901268/DeSmuME_VS2008_NoConsole.doyo000

    • Size

      3.8MB

    • MD5

      12c5097e3e64826d8cffc365e4770f61

    • SHA1

      2061a1b2ad450ccfb6340e9674154122cc6eb2d5

    • SHA256

      3660ba2822c5db7ae0af1c415328b67fab9ecbc21d79089053c32e09c5d412bc

    • SHA512

      4d0fec570ebb63bfe8c4c546ee925eb5e9590494f5ce8b8da22ec3ee6bd35e400d5e76cc4785e869df18c5ba2fdf589002b72a7d29847fb632c3eaba02c3bb24

    • SSDEEP

      49152:CbgVDhgn/CEcSrxf2ZXtDdG5d0FmTpjCETf:Flg/kSrxQX9dG5dwW5

    Score
    1/10
    • Target

      10901268/10901268/Game.doyo000

    • Size

      28KB

    • MD5

      393162d42c0350c4918f347d957339de

    • SHA1

      1a05a1eecf4ac2a3b5c979c3231f80f073d9cd64

    • SHA256

      007b5d12434310f095fc417ecc5f65bb19f5eb9b5eb196cec4a08baae89af04d

    • SHA512

      d12a74a09aeec8ec3b02e4e9d6bfc72e804482fbbda32b38ce4ec8cf20bcd2609905dd7f3654ce716aae5b63917f52a3942829979f2ecd464dccc9d346ab3c36

    • SSDEEP

      384:IFzUKM2liq1PWNGwlU9j2CsOc8QXnjQZZLg+qz:IxUK4MPWflHAejQZhqz

    Score
    1/10
    • Target

      10901268/10901268/doyo_thumbnail.doyo013

    • Size

      9KB

    • MD5

      b0d1baa2cc613f2b22fddc99d595dda1

    • SHA1

      8df1548958a07d5af9bb6c6892b3a32f4c2b897e

    • SHA256

      076c4777021c22f04a59bdeb2ae508f227d89c9253fa7d4ec8086bf53c56d6b1

    • SHA512

      5e5b416451a9e741966ccd5eaccc9a928cfb37d1133dc3f17a86b78639d8b30ab3ae2484c945a3ca863c0204676b56ed529de513fe7572f9a78dd7df8dac53e1

    • SSDEEP

      192:Z6D++f1Ps/sgoLXg3pv6JjNJE/ogcMV1WmYUpdItzOQi9pYGNMjddlj:Z6q6PSXoLg3pvMowgrV1W12GtzONM5j

    Score
    3/10
    • Target

      10901268/10901268/dydatadir/doyo_setup.doyo000

    • Size

      202KB

    • MD5

      fb6a7dc26f97b757d46bebabc2cf4212

    • SHA1

      89fde930d3c8149210b862ca7a86e4c28c48b186

    • SHA256

      616a82b55afc5ddb92edc0aac8d02da4b0258689bc5da2d7013d92d5bca6928d

    • SHA512

      345051875b60110a7123425b7858ffab26e20a181c918bdba22441e4487d3fe047b2b96849ecd3d2963bfa3acb507018ffdb798696ba6b82f1bb3eb84ac45b82

    • SSDEEP

      6144:kC4JgYfhR5KeVF5C2KRLLFqwB50K0oS9LT:r4Jgi5PXan/goS9/

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      10901268/Setup.exe

    • Size

      480KB

    • MD5

      932434ecfebbf4597b2e708533c2bf1c

    • SHA1

      b862f0aa85324dfc7dc3c51a851f1a75caf9cf5c

    • SHA256

      157d305f19831bbe0b1a4c4df56069a234361fec11ae9c02bab77f1af641b97b

    • SHA512

      595d259393a0ec35cda136eb26c0f26103e3981afb1ae2e92085eb39a3b5b8a3c59bb2971e66e2155842ad527d10584414ded258a046fa57b9cb535186c7977a

    • SSDEEP

      12288:+kTyXmk77qAXxm+o5TQgu6NhR5MDoSuDF8rm:TMmkP7I+o5TqsaY

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks