Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
8Static
static
1CCDisk (v2...HK.rar
windows7-x64
3CCDisk (v2...HK.rar
windows10-2004-x64
3Crack_HK.zip
windows7-x64
1Crack_HK.zip
windows10-2004-x64
1Crack_HK/CCDisk.exe
windows7-x64
Crack_HK/CCDisk.exe
windows10-2004-x64
Crack_HK/CCDisk.ini
windows7-x64
1Crack_HK/CCDisk.ini
windows10-2004-x64
1Crack_HK/CCacheX.dll
windows7-x64
1Crack_HK/CCacheX.dll
windows10-2004-x64
3Crack_HK/db.xml
windows7-x64
1Crack_HK/db.xml
windows10-2004-x64
1CCDisk (v2...LL.bat
windows7-x64
1CCDisk (v2...LL.bat
windows10-2004-x64
1CCDisk (v2...up.exe
windows7-x64
7CCDisk (v2...up.exe
windows10-2004-x64
7Analysis
-
max time kernel
78s -
max time network
142s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
11/03/2023, 14:09 UTC
Static task
static1
Behavioral task
behavioral1
Sample
CCDisk (v2021.02.19)/Crack_HK.rar
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
CCDisk (v2021.02.19)/Crack_HK.rar
Resource
win10v2004-20230221-en
Behavioral task
behavioral3
Sample
Crack_HK.zip
Resource
win7-20230220-en
Behavioral task
behavioral4
Sample
Crack_HK.zip
Resource
win10v2004-20230220-en
Behavioral task
behavioral5
Sample
Crack_HK/CCDisk.exe
Resource
win7-20230220-en
Behavioral task
behavioral6
Sample
Crack_HK/CCDisk.exe
Resource
win10v2004-20230220-en
Behavioral task
behavioral7
Sample
Crack_HK/CCDisk.ini
Resource
win7-20230220-en
Behavioral task
behavioral8
Sample
Crack_HK/CCDisk.ini
Resource
win10v2004-20230220-en
Behavioral task
behavioral9
Sample
Crack_HK/CCacheX.dll
Resource
win7-20230220-en
Behavioral task
behavioral10
Sample
Crack_HK/CCacheX.dll
Resource
win10v2004-20230220-en
Behavioral task
behavioral11
Sample
Crack_HK/db.xml
Resource
win7-20230220-en
Behavioral task
behavioral12
Sample
Crack_HK/db.xml
Resource
win10v2004-20230220-en
Behavioral task
behavioral13
Sample
CCDisk (v2021.02.19)/STOP_ALL.bat
Resource
win7-20230220-en
Behavioral task
behavioral14
Sample
CCDisk (v2021.02.19)/STOP_ALL.bat
Resource
win10v2004-20230220-en
Behavioral task
behavioral15
Sample
CCDisk (v2021.02.19)/ccdisksetup.exe
Resource
win7-20230220-en
Behavioral task
behavioral16
Sample
CCDisk (v2021.02.19)/ccdisksetup.exe
Resource
win10v2004-20230220-en
General
-
Target
Crack_HK.zip
-
Size
6.1MB
-
MD5
b758b483c53af320e2585991b65cd2d9
-
SHA1
1b537b71ff1afe5787492141682551650883bbfb
-
SHA256
1408d798dd57c889f4742819a33d1abf4969229acf6dbf118c2c9214a5228bd0
-
SHA512
19f58232d6ca98abb9cd320ae2c71d43710028dea29f14da63468fbaae283dd35d9e9e4590d13e6449ee9bd78df46bec9570cc2fc012f82a89b29f7352e7f36e
-
SSDEEP
196608:F1JzXRqlEn8ml3RfFWyLDBzo4dhACs8nT:F1JzMo82TFzo4ps0
Malware Config
Signatures
Processes
-
C:\Windows\Explorer.exeC:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\Crack_HK.zip1⤵PID:216
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵PID:2228
Network
-
Remote address:8.8.8.8:53Request154.239.44.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request126.50.247.8.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request76.38.195.152.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request134.17.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request232.168.11.51.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request103.169.127.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request177.238.32.23.in-addr.arpaIN PTRResponse177.238.32.23.in-addr.arpaIN PTRa23-32-238-177deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request206.23.85.13.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request45.8.109.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request2.36.159.162.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request206.23.85.13.in-addr.arpaIN PTRResponse
-
260 B 5
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
72 B 158 B 1 1
DNS Request
154.239.44.20.in-addr.arpa
-
71 B 125 B 1 1
DNS Request
126.50.247.8.in-addr.arpa
-
72 B 143 B 1 1
DNS Request
76.38.195.152.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
134.17.126.40.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
232.168.11.51.in-addr.arpa
-
73 B 147 B 1 1
DNS Request
103.169.127.40.in-addr.arpa
-
72 B 137 B 1 1
DNS Request
177.238.32.23.in-addr.arpa
-
71 B 145 B 1 1
DNS Request
206.23.85.13.in-addr.arpa
-
70 B 144 B 1 1
DNS Request
45.8.109.52.in-addr.arpa
-
71 B 133 B 1 1
DNS Request
2.36.159.162.in-addr.arpa
-
71 B 145 B 1 1
DNS Request
206.23.85.13.in-addr.arpa