Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    429f8dac77e88e73b4ce926dba680e9878bb8512e091a607edfc5834dc0a5c67.zip.zip

  • Size

    4.7MB

  • Sample

    231107-q223dage97

  • MD5

    c46766409d3e8f11bd44cae1361192e9

  • SHA1

    3ab9de7590afbb784ab2c37a4f60f73a0c798706

  • SHA256

    5b69fc1168558573d4b91d91aebeb20a24e2f855e95c5a30da82df23d4ce0699

  • SHA512

    97889bd4d3896efbc35e89d7bf3d13e3f07d3367f807fc2d268bef987be34548d04ec940290a9cd05dbc7e9c365603b53b85b89d3555e988795fb8dee941cb5e

  • SSDEEP

    98304:wq4iL8YgnWbLC46LJF3DEtTwyjnAtU68COA/dm24niKy1h+Ie/vVrR:T4iLhgnWS11F3Dn3u64KEiKSWvVR

Score
7/10
upx

Malware Config

Targets

    • Target

      DPS_DIAGNOSTIC_TOOL_V2.0.EXE.1.98CE70F3F3774FF98989EC97D83C70EE

    • Size

      2.4MB

    • MD5

      953eba21fb394b5a16daf9e6a5a25926

    • SHA1

      61c8e59fcea52f3ad914ac542ca4f279a9864d32

    • SHA256

      26df630f6f8d84647563407dee4401eedc8e26bdd75b15ef1ad46942ac509c14

    • SHA512

      a04ef5c2b8992d40ddb2d33088b995301b671803fe2cb071afbc553c702a21264ff79772be4135f03c073fd9392117c884fe13e0463e973ecbf200d078b550ba

    • SSDEEP

      49152:s4LYIiLOrSN+vRCc+JJj7j89dis6wDmMzyoZaMQSXUX69bwL:s4liOQQCct9dcEmDM5XUqqL

    Score
    3/10
    • Target

      LVZLIB.DLL.4.98CE70F3F3774FF98989EC97D83C70EE

    • Size

      84KB

    • MD5

      6ca878b7c0656ce8613b655d08fbd90d

    • SHA1

      38fe323aa3848df3ae6cabd0610792eeb15d5231

    • SHA256

      e80de9fbf7e17b9138762a1f3f0fcf285c388a64f0ce187354757826ceb7d446

    • SHA512

      368ab69c297621bb7a656e00bdcbf8dca4e9288e6bb214794756bbed8eb3bbdbe7cc54f03037739387065e71b9a579dd85e01dcaa5e14aaa4cf5ee2be5f4d6d2

    • SSDEEP

      1536:dZPG6dDkyg5i4tXdemb962jcbJ4JxhOanToIfQIOlIO6wwe:dZPG+i5i4tte+96EcdEHtTBfGv6N

    Score
    3/10
    • Target

      bin/dp/install.msi

    • Size

      1.4MB

    • MD5

      bd4197fcc24ef42031fdd26c749192c5

    • SHA1

      f644b383509892e23641c2336e698205e3b1d692

    • SHA256

      8726518f5783e2d2e02a7d06f2aa49e7e6a3771316d46f95ec0fa7e24f5c2a60

    • SHA512

      06457838ff6055a56d28757884e2929b9ce9f8d88af6a84af3d41a1222f9e2e7f32c427b5944968573e7ff44527453e2853eb6176aacbbc23fc97a8ace86f600

    • SSDEEP

      24576:MvJbwGLXIMzGfo2wCM3fqGge5Po/XKs+WdNESjHzVIaHErPjsgQYXrqGgeR+z:MvyYKo24etBpTHErdhX7+z

    Score
    7/10
    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      license/SmartSoft License.rtf

    • Size

      47KB

    • MD5

      5e67dc6960c38eb52ee29696e0051ebd

    • SHA1

      b0cf04c9513d2df58ffd35779d3631dc26c56fb2

    • SHA256

      bd4c2419e8f2c70eeef636de9bb823631257fae28b3f9e87ad20c13d1aed6a2e

    • SHA512

      a8fd6dd655b94f8c16f5f9d04c654a3f6f3c2c12b18657678b0406c30fede6f193ad8cb7f129e8e8b089f92b6d80bec26cce5eccbae8531e72c6bfb250eb3d06

    • SSDEEP

      768:1eJ2fB83aYlO5Btg98x5glIeQQYaRwPHPfWZkmYptP4nnhPcrdSAedP1LoPsovnr:1eJSmaYC1HwviYCAhS

    Score
    4/10
    • Target

      setup.exe

    • Size

      1.4MB

    • MD5

      8ab5a3a76d5d1095c59d7539f234709a

    • SHA1

      44d7263669eed238b590aa5a68c1d265fa11292d

    • SHA256

      54ed84eea949b469dc541196b07ff435661225174755e56e965dc022eaebfd2a

    • SHA512

      ab067f6ad2cb5549ccf4e5c2c9b91ce2a3403c83ba25b20f2d5495c2cfb0af83e3af16f02b312288eb1f4eb1f620c2c82fa242cfe64eea9ad50c525ef18ab6ef

    • SSDEEP

      24576:pdWJmFEvqMO6Mf+Hv+zuQdqdv7SBpBBkqJw8rD5o3Bx5Vw+71xHAsqo2S/T:ZlMmWNKiSBpT/JtcBx5VX4sH2S/

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      supportfiles/customResource0009.dll

    • Size

      2.0MB

    • MD5

      1c1fef8c9588bcceda2b2a26ac974afc

    • SHA1

      0582a5ba59206076e4ebadadd9f2a3838f0044ee

    • SHA256

      ff60c57b959bcd3cb586f8be508dde2712ef7b896c2a56bffaa544fde7286c1e

    • SHA512

      2603e7833f8070c4e19397cc12aeb50808f2655417303a62b66bb63cc526c0203bdc750d128ed3682302fe4a83bfbbc29c140734ad902f235ae2261d9ddaedc5

    • SSDEEP

      3072:gIXatRRGEPVA8Oxp0he0npsMv1gcORJUB+0nJUhr:gIcq8Oxp0he0nyMKcORJUB+0ny

    Score
    1/10
    • Target

      merged.bin

    • Size

      1.5MB

    • MD5

      6f5431b6f2a3af553797c462e0340d86

    • SHA1

      9c36e206367a8f04fadcb688844a89ae55167165

    • SHA256

      28e40ad02b3ad69a4f2eae18d4cd31024ce9ec5432ac1f65c52e4d72305f144b

    • SHA512

      000db4c9a317456c8ff74b9122c218abee98f2fbdd5993fada3ef547ef969db9ac5f971885ec874c4e567615d166fa2f48940ab82c8bba1ff3dfae22c171193c

    • SSDEEP

      24576:/fOItzGSoXwC53tqGgeIiNVDso/NnbKGdNWSjHzjIeHENPjstVPXdqGgBuRN:/97oXZVVya3PLHENE1X/N

    Score
    7/10
    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      supportfiles/niPie.exe

    • Size

      71KB

    • MD5

      8e4dc3f76168e44c62532b8635f5b2a4

    • SHA1

      d936368b4aa7101ed4df4dfcac28c05952cb4d38

    • SHA256

      109ce6c14549d218be856460a25e753ae917fffa8d0a142890a84ec00b6a525b

    • SHA512

      4389ac539cc6934ff1c864d96a90988267b81a33776f19ed8d10cdc3c97c29a7e5af4a7b53865473d9eb7a1263db31f8b46f5d8db07b100d4372cd3f20133fa6

    • SSDEEP

      768:ujan8GnhwDHcnrkqAAO8IEwm8iNWTGzvtKspRoSHfV3whZ:ujanoDGrkbAO80mhN/ZKspfVghZ

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks