Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

花锦CF�...��.url

windows7-x64

1

花锦CF�...��.url

windows10-2004-x64

1

�...��.exe

windows7-x64

8

�...��.exe

windows10-2004-x64

8

�...��.exe

windows7-x64

8

�...��.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e06566eba34b9cd601d4e003f8ff9e5e4c48246eaab1759ee5dbc2eeba04f290

  • Size

    950KB

  • Sample

    221128-ddewqadh8t

  • MD5

    1b8ef8e8c3c8176f85bb4ba978ff1569

  • SHA1

    54aca2d3c76d01574ad58a9f01970057a03993e7

  • SHA256

    e06566eba34b9cd601d4e003f8ff9e5e4c48246eaab1759ee5dbc2eeba04f290

  • SHA512

    f97f46cc6b0993d67dc39ee1e5061eeb91ed41f6ad88c0f274f80cd06fdd7c017aa0944fbdf60d95031072d1ccbc6bc0508f586a1170a3ce2ba29a5a46c340f6

  • SSDEEP

    24576:ZpKsNifl/YdCr5uEcUW7mnPNJMGAcFl/bjNHe:2vlgdAuEcUW7UMGL/bjVe

Score
8/10
upx

Malware Config

Targets

    • Target

      花锦CF稳定无异常多功能Bt辅助Sp14/新云软件.url

    • Size

      217B

    • MD5

      e5e80be1cf1a1b2af35991aed091c827

    • SHA1

      79e02d122cdf24da7e59044b4bf83572242b4c71

    • SHA256

      1016d243a1266c9970996f2847639ecefbecc361cd98fb79d27d048eee3dd69e

    • SHA512

      b926f6e34e0e9e260a8f6e59ec8e660af0fea09de91140d968cc7665ea45f840a8951f4a1c0400bfe384d2e269159febfc5e32981b863b9d97830f5eb2521705

    Score
    1/10
    behavioral1behavioral2

    • Target

      CFȶ쳣๦BtSp14/CF쳣32λ๦BtSp14.exe

    • Size

      876KB

    • MD5

      6cbc49888f269e2550be25b0004f928e

    • SHA1

      4b2c754e35dc48a521c75836a078b9980fc6d912

    • SHA256

      0e3f2e99c002a1715f1e5c0ea33d52a208fe163c956ad9ee6acb1fb6db5e7aa6

    • SHA512

      29efb03dfa94f9d75dd411c9186c2cc0510317b6de7e67362e66617772cd22118256126e0adfc18b81a6b212ee22483eb88941cb49b9623d19e3ec2f049fb6a6

    • SSDEEP

      12288:DW0po/CNasWgk1teIP92VescyGqLChiJYFjQegUFNQ1R5nWFpPoSp5X5jeIQWt:DW0poaNgtlP92Ve8JY+U0YbHbjlQWt

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral3behavioral4

    • Target

      CFȶ쳣๦BtSp14/CF쳣64λ๦BtSp14.exe

    • Size

      900KB

    • MD5

      fc325eacdd37e8a4e077f1e4a4df5e73

    • SHA1

      97cb09930a486e32845ef14104325fb2a2afc104

    • SHA256

      c303b0571dad941b8693b285500178de54a5ec8a1f3b77b998e661905b8f8d8c

    • SHA512

      6a86137fcb2ab2c8218719eeacc8b774c92874909f3172ac2214f319df9094fc697e0afef0cdeabb5b95d4a36c9551895e9491b3f637d02836d96c4d3fa25489

    • SSDEEP

      24576:fDReYgQTXiDfEQ+iuZygzJA5jn0Ab4G7uBm:fNeYgOKf/+iul+Fn0A1gm

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral5behavioral6

MITRE ATT&CK Enterprise v6

Tasks