Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

29/05/2023, 21:43

230529-1kzk2aea7x 6

29/05/2023, 21:40

230529-1h82paea7s 1

General

  • Target

    SDIO_1.12.12.753.zip

  • Size

    6.2MB

  • Sample

    230529-1kzk2aea7x

  • MD5

    e9513b176947e7b2a61ab446ef3c54cd

  • SHA1

    59455ca12afc3f3d2ea49d181d8a8675606783ed

  • SHA256

    c24c4d805947b473c5f9abf3fa3b2168b1aaf8b282d612d004fd60774da49193

  • SHA512

    758e8f8ac60693390eb9139c98813bd710f010e573d77e721629202b4cec1860828657766bd89ada4b36ce1db53ffd29f3adcdd320b8d6c2bf3364884f317da5

  • SSDEEP

    196608:jj2Aq3jrSs0FATu7xBE5j/eaOVewzL9s02fSj:RojrSRUmBILzOhrKSj

Score
6/10

Malware Config

Targets

    • Target

      SDIOTranslationTool.exe

    • Size

      1.3MB

    • MD5

      7fb1f73a64c12c56cb43bef2693ee12b

    • SHA1

      0ae0178590c81cae0f5e5962d6f07dd128d51f41

    • SHA256

      d086cbfda679efb0e5193149377825f81ebf7e04b3b79179c7cd56caa42e6df4

    • SHA512

      2c2704ca4b9061f80d05cafb10ce4e4f491abb4c2560752bb99bb67011bf83be6aa3d90f17f72a5c2d1d8d57a8f7f583883d92d9362f890aea8b6e1ee91a8473

    • SSDEEP

      24576:2Tgq6zxNJhhC8+9bC70Etm23Wx8bJsnWpUxZ+E86+3:VTzw8A2WibJsnyB64

    Score
    1/10
    • Target

      SDIO_R753.exe

    • Size

      4.6MB

    • MD5

      cfeda33e8f043fba19fda4400869f066

    • SHA1

      86b23205512a4c42726dc7afb90e5591b199fc54

    • SHA256

      98c4a1b258f598a9193010c08dbb25840ba33083084b69665d29a9491b9dbfc7

    • SHA512

      a53e59e8da6042427f7ede9e350d7966ccf8cb8fd7b20767a96f70997eb31d9e3f59c3d96a13ed921089da56fe04c39b84dc5612fe65ffdfebfe5b14634544e2

    • SSDEEP

      98304:pcjmdvtXjj+CFQ9HAgE8DzXrd5b5E2AwsQrpG/+A1rx5XLyHFo84s:pcjsFXX+CG9fE83XrhE2RsQrHSrXLyHl

    Score
    4/10
    • Target

      SDIO_auto.bat

    • Size

      845B

    • MD5

      6b212b7437621b9da03bc0cc0652e799

    • SHA1

      6f47859d1ecd805b94bcf7f9f4f741827494f0e6

    • SHA256

      4db7e2a32b85f2a21ce95778b627d1454f6875ae3bf8aab90b917fab362d15d4

    • SHA512

      3adea96c7e6e40ec4a9519b536d9d4c91d9638e9f2438e9bb4e36ea6ff7fb7fb2c91bca57c6f3850ad45336782efe910f7a10d1aebbfdc11573a2378574efcd5

    Score
    4/10
    • Target

      SDIO_x64_R753.exe

    • Size

      5.1MB

    • MD5

      bcc820cda8a2cd2484ff08ac36ef5116

    • SHA1

      258bb2c6b1065f4bb48e3bc2baf11a89a1c8aa11

    • SHA256

      63997f17b27c19e6a1dfb77b68e475baab78961999b668bf0401f2a9b5a5e028

    • SHA512

      d83714ca2cba13b992f3d76d8622dbd1c3e305b4e98e51072bbd6d9f245f155b0361a2e9c47b8ac0a0b6e8c164266944550648992e45220adfee1c9243bba424

    • SSDEEP

      49152:wi4fH9oFEftw3vYMkqecOCiQhxOsEzijUeukxEqtH+Nn1YufNaUYl5beRfbtG6NC:XQh3M9F1OmhdSEeRfbtrPb78n

    Score
    4/10
    • Target

      del_old_driverpacks.bat

    • Size

      1KB

    • MD5

      059a48f88d38595b3d4fe63d78b509f0

    • SHA1

      5acf13baa930f384227f5d59371491787ebf97c7

    • SHA256

      6d74ad1de33394216a6fd1ffb58e87d90a399bdafa8d2ac223e2377ec5947859

    • SHA512

      397eca1cf2f830316cd39296b5b9015938f777b8e26f00c8ee0ff95639dcbf097e55586c35dbeb5b559d7e17ff90203d396f13a1524bc24b153186005f9f4b5b

    Score
    5/10
    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Target

      docs/SDIO Reference Manual.pdf

    • Size

      1.0MB

    • MD5

      3cd5aa9ebeab57595edc491c0e2d4f13

    • SHA1

      5eee7d8d8cbb6b6ff430e06c88b9fc9a743a8a07

    • SHA256

      d7853cf9361efb3cc947268f3bf24d55b20207de7adfac64093434cd37aaa7a1

    • SHA512

      c291fd0ddfe56969c818fd22ccb09c759a3e419d9ea242179969bed70e057091a8e7b0c216ff49a97e286e8dfe3c71918b3b18fa505c9dface1025f603da7aef

    • SSDEEP

      24576:660dsOQ5zl9TJZvIuCdzriuKUPFTPgITC1oxEYJQi:l0dtQ1vTJItri3c1Pn+1Qz

    Score
    1/10
    • Target

      scripts/autoupdate.bat

    • Size

      1019B

    • MD5

      3342f57d5527bde4740984aa492223f9

    • SHA1

      5a1810547c9f93a7d37873775b8ad5737066d086

    • SHA256

      3a5edfaa2cdaacb452d7f09ec7d3bd9a374d335a46173f8e0d2d678fb63fb245

    • SHA512

      4f5ef7f8c8cc1b9008114817de31c1aac496a945ce95187ff8efd1c75f51cccd3b99757faeaf1d5ba0ed72a4e5c56fe402e7e276c240ecd46f416f1529d72ac7

    Score
    1/10
    • Target

      scripts/prep_unpacked.bat

    • Size

      263B

    • MD5

      00bdb244439526a613b23f1ea831d926

    • SHA1

      91325268841a52b2cbcc8f4475a64186ed7229c3

    • SHA256

      671c3b573a7a0a617e5a1156ec2c6496846a3a256b64a5ad1ce92fd179904954

    • SHA512

      b6cec8ce8e7a96f2401641d8593edb77173df9f80083f99af93ad337017af004f3a481178c2f1c309bf1b2e32583a843bb4bd680c811d07d1a1b1b34e37f2a89

    Score
    1/10
    • Target

      scripts/remote.bat

    • Size

      213B

    • MD5

      cdc25c410a2b6eb4e7e8c90294c2146e

    • SHA1

      4628f12e486556bf90c592208c2c7b83af7ecfd2

    • SHA256

      c6de4403113e0586cba59fdfc2cb20c68f2c690636692d03c9a4cce09ca61287

    • SHA512

      b3cfa2c442e46bccca0e77a53971937cf29dcdd995168575e847f8e75a7fae4fb20fe3dd39effa74fe7bcd21b6774be2ee1d6be84287e9ae781f2fd0ce17bce7

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      scripts/scan_driver_packs.bat

    • Size

      945B

    • MD5

      2dbc6fd7355358866c8face4168a18ac

    • SHA1

      80d767ff1d5ea1ac022cf2c213fd2583742734e9

    • SHA256

      7c78826b30c054d407037d41368a40fabef133f1c83348290f0d756e05141e16

    • SHA512

      e71c31e53429e9dd4eb9a02124a0867d10c96c275ecfcd1fd8e1e82f1f6bca82fa7b6d2c65ec3c27749a2f43028600286daf53b65421b67ffcc4335f888666cc

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks