Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

tmp/pma_te...0ec.js

windows7-x64

1

tmp/pma_te...0ec.js

windows10-2004-x64

1

tmp/pma_te...6f9.js

windows7-x64

1

tmp/pma_te...6f9.js

windows10-2004-x64

1

tmp/pma_te...84a.js

windows7-x64

1

tmp/pma_te...84a.js

windows10-2004-x64

1

tmp/pma_te...0af.js

windows7-x64

1

tmp/pma_te...0af.js

windows10-2004-x64

1

tmp/pma_te...64f.js

windows7-x64

1

tmp/pma_te...64f.js

windows10-2004-x64

1

tmp/pma_te...c0d.js

windows7-x64

1

tmp/pma_te...c0d.js

windows10-2004-x64

1

tmp/pma_te...6b7.js

windows7-x64

1

tmp/pma_te...6b7.js

windows10-2004-x64

1

tmp/pma_te...228.js

windows7-x64

1

tmp/pma_te...228.js

windows10-2004-x64

1

tmp/pma_te...9b9.js

windows7-x64

1

tmp/pma_te...9b9.js

windows10-2004-x64

1

tmp/pma_te...df.ps1

windows7-x64

1

tmp/pma_te...df.ps1

windows10-2004-x64

1

tmp/pma_te...09.ps1

windows7-x64

1

tmp/pma_te...09.ps1

windows10-2004-x64

1

tmp/webali...x.html

windows7-x64

1

tmp/webali...x.html

windows10-2004-x64

1

tmp/webali...x.html

windows7-x64

1

tmp/webali...x.html

windows10-2004-x64

1

tmp/webali...2.html

windows7-x64

1

tmp/webali...2.html

windows10-2004-x64

1

tmp/webali...3.html

windows7-x64

1

tmp/webali...3.html

windows10-2004-x64

1

tmp/webali...4.html

windows7-x64

1

tmp/webali...4.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40a3625ba29f878666eec243d2b8c8bcf71f0a17b45b2667e97e7d13201d4b70.zip.zip

  • Size

    1.2MB

  • Sample

    231107-q3engagf32

  • MD5

    88ac42761d6c1032bb564080cb3e7e42

  • SHA1

    c95f30d3786d96892b306e05859dce4338967a33

  • SHA256

    6c5d46847ebc4decfa959da450fe1bf4a5d46a2f036a498fa1776e4e9b8dc72d

  • SHA512

    0530658a90d757c3fdb8bb160204283c919feb162f9d8ada07135c8fee1d14b78f64f605834692115137720d7ac351d9cbb6676b3f5f39bbfa7e414d898204ee

  • SSDEEP

    24576:AIno/GMFp1AR/eNarXfSqnRmbMiMrWR9x/BT3kdvtvhOWrgMUtCyidDDS:boewARGaTKssbMiM6/x/93kroMRUOS

Score
1/10

Malware Config

Targets

    • Target

      tmp/pma_template_compiles_locati18/twig/14/14b2c9d0bfdae865ffa2868d40c1c9787a8db42a100fd3ff8e0f7747f345e0ec.php

    • Size

      6KB

    • MD5

      d54c4800493aed30d12675e8273d02f5

    • SHA1

      22fdd38840f47305c6108692f236acc14f848207

    • SHA256

      5fd43308de627b349e03e8dcf729b7d2b9ccda7b18eb47d8a0c86b725066e825

    • SHA512

      8b30138fb31344d6cbcc5ae100716467f1afc009b72807ec31b23018923831dbbf7b844e047079d09635546729afba6d65cefcd4c345344368149fe4ad1bf03d

    • SSDEEP

      96:3dq4w/k+OJNAnpLjqEeQ/lSTamHOHeSfs5ztKK6p0Jwr6xL8KgiHu5wM4EHTMVKp:3SkzsCx/a92s++2xLU56FtIHd

    Score
    1/10
    behavioral1behavioral2

    • Target

      tmp/pma_template_compiles_locati18/twig/15/15a885ca9738e5a84084a3e52f1f6b23c771ea4f7bdca01081f7b87d3b86a6f9.php

    • Size

      13KB

    • MD5

      06b0ba4f8919f1deffa208420d42c2a2

    • SHA1

      0eb0eca16c5b0ac850498c2e9135ca578965ca5f

    • SHA256

      9b3c62f71b86744c900b8a43e3e939426ba0b984c71a2fcfce200c7b5da343f6

    • SHA512

      86b7c7542e6400b6144588ea839518994252e1f0ab9d287242080b0c68a7f6b046114252ad04ef81e1acfe31fd0e0a3deef7be65bdec284720e9d2e638f78789

    • SSDEEP

      192:3+kwmqQSHJKBSyXr8VUE60ErVdF3TIi3n2hSJYWNjJJsH:3+kFwKAyb8q9+fSYWN1S

    Score
    1/10
    behavioral3behavioral4

    • Target

      tmp/pma_template_compiles_locati18/twig/3d/3d244f24ed57e8d55af617d0fc5293ec25b526d02b734580e3ac7e771f4a384a.php

    • Size

      22KB

    • MD5

      8f22bf0686a16702366b884a061b954c

    • SHA1

      975ada0a4def5f651286c91fa572342ebe8d05c7

    • SHA256

      e914880de7f0db5b79f0787e3f2a6fbb4f324cb51a7614585669231af40fad57

    • SHA512

      545392ed9bbb3babaea708e6543d8c4b4130eba48fbe1ed3514002907fba164be63d8fd38bc81e9349d32b71168fcbf8b1b2d896876dc45fcc5247b8635099cd

    • SSDEEP

      192:3Oak9fI680qptb0QIiN7YxMC6jiEzdLtR6PY5WVqdBxo/+bVqbm95LC7gDx:3Rk9fI68hptTrNtViudTWYuM8gwgF

    Score
    1/10
    behavioral5behavioral6

    • Target

      tmp/pma_template_compiles_locati18/twig/5e/5e912b8bac284edce7ac4150e4d84b26814169ac917b2d071a3c51984ca910af.php

    • Size

      5KB

    • MD5

      88c5d95022b635336e902c27990be400

    • SHA1

      333d7eab3d7e829db5bd97a8368883e90a320c17

    • SHA256

      d03ef7ae37c072138371acb74ffbd4899f72c5278100a95109d236bb8af80a4c

    • SHA512

      10f4f9731cf82b26f063fc1ae6a080ae76719550d652bd5786d89ebbcbd3be6f1eb5660f8b9f6a4634267a541b36295892d06d7b3b69f6783a6127694e5fe6b2

    • SSDEEP

      96:3dq4Tki7HvHeSfs5zs/6UNpBP1D6xLVKEFVHuxoxPAnqSHdx0K8ZuNZ:3XkiXMwpXuxLAx4XlZCZ

    Score
    1/10
    behavioral7behavioral8

    • Target

      tmp/pma_template_compiles_locati18/twig/6d/6d7f8059e9b20f76916a175316d7c40d0bad97e6a6c56aef4c677d81f2a2b64f.php

    • Size

      4KB

    • MD5

      7e19c57622726eb0d982c5bd83d1ff28

    • SHA1

      d828ebb1236995023aa207f6756d169f569baef9

    • SHA256

      c4fb20696c3d91e436cb32a3eceef6a9f8db0156a81d950c5426895f6eab1e13

    • SHA512

      58547c23fa21be406f7b8ff062a43bf4707ab285d17b91f63bdf5b778e03e8c1cabfddfe16a641b02294757ce800761e079ebde5ea8a7eb16363968bb6cf7183

    • SSDEEP

      96:3dq43xUk9BRwAds8tWz1YX0Vv7C23C5kR9RNVNFH2y:39UkZzwdR9vPF2y

    Score
    1/10
    behavioral10behavioral9

    • Target

      tmp/pma_template_compiles_locati18/twig/73/73ee99e209023ff62597f3f6e5f027a498c1261e4d35d310b0d0a2664f3c2c0d.php

    • Size

      4KB

    • MD5

      e64e5035d9950c0b659cf0f7c81cd32e

    • SHA1

      b6d83ea14f99d58acdb63475229745c99829bfef

    • SHA256

      6e9cab02bcb77a85c00e4bb8bb4a71c5c169fff04099ba3db51c9b77d30e3e16

    • SHA512

      2f044fc6852268c0e7e30dc3b44ab11f681c58b25a4e57c5bbd3b29db05af74dff736a00080eaf2060a9392344394d0ca4bbcb20b4d50b7a7732af6743b8a69f

    • SSDEEP

      96:3dq44kjVe0iCp2kYPfi4t6PifY8xYwq+j4mAmFNh:3skOfq8Y4Y9m/h

    Score
    1/10
    behavioral11behavioral12

    • Target

      tmp/pma_template_compiles_locati18/twig/a0/a0c00a54b1bb321f799a5f4507a676b317067ae03b1d45bd13363a544ec066b7.php

    • Size

      1KB

    • MD5

      6c55bed0fb084e3faa997a8b5c7e9d39

    • SHA1

      2d7a4554ae5df10a9787d01189bd02ed173b503e

    • SHA256

      a5219fb67e88ef02a3bdd2bf3237fa5a08d5c44347df70104015560e1e5c9cbb

    • SHA512

      5da822a06fb9c63d1781901ca8ef54cd1873b8e8785a5c553fe1b04c73669c633953bf0b4d7d14994ab5cb8363ff6a97623578be3b5c90f077741478f4321c65

    Score
    1/10
    behavioral13behavioral14

    • Target

      tmp/pma_template_compiles_locati18/twig/a1/a194708bb65bb37820bd16df5319a4fc4d9bcf38438b4270ece5d962c0fd0228.php

    • Size

      24KB

    • MD5

      be5f8ca339dfa29ba62b820a5d106d49

    • SHA1

      1049149c7e25ee21328ca5a28678de0380739771

    • SHA256

      341f2884c2d3bc3f1840bd0d8d169cc2858b891b89bd9e322f61ec58df1c7618

    • SHA512

      f7ee8438a2924c1fc0890a2a2d3c2f173dd26eee9b31621eb022f8c111fdb0e2c87483dcdb53c16fc92e87e1460d9611bf0e7f3547b2486bafedc4e5dbee11da

    • SSDEEP

      192:3skISWYdRiV4HngV21wBwWweBoHKztWE+P/3rDScEkZMgd+i4EmOYzLENx67CWcF:3skI5Yw0ngjBSHKD+PPrnE85izLaxHF

    Score
    1/10
    behavioral15behavioral16

    • Target

      tmp/pma_template_compiles_locati18/twig/a4/a49a944225d69636e60c581e17aaceefffebe40aeb5931afd4aaa3da6a0039b9.php

    • Size

      11KB

    • MD5

      efb09dff9e915edddcd9d83df8df9f5b

    • SHA1

      1d4f370d8c1165a0c0a5ba3fd2f28e3753e2f8b7

    • SHA256

      87c51317bb894842955832e44ce3b0e555e1fcd1c89aac10c523bdd482931132

    • SHA512

      c296eb88ef5997e5ce97c20011798e71548cd6cfe007c434eb009286a7cd900d44069d05b8da797ea30372165292b6ef739e00f4c371149d72f03776bfc0788e

    • SSDEEP

      192:3ljkPw1FaxhNZu7gQ3FY+7dDm4iRA8fovWfH/Y67sU/K6E/dthMMcld3f:3ljkPwaZZ0/7dDm4i60sFSZldv

    Score
    1/10
    behavioral17behavioral18

    • Target

      tmp/pma_template_compiles_locati18/twig/c3/c3f280ca602577cf8822c5bf69ee66c61519e2fb941cfd1f11dd5f912bb4d7df.php

    • Size

      17KB

    • MD5

      312cba1a455edc9df08b9ba990bd7f04

    • SHA1

      24a0ea9022982d5a630bacb1a9da1af01d2eeeba

    • SHA256

      2743b387e68dd5f0d10968ea1440195260baccd747da86605c6f59a7cf47a3a9

    • SHA512

      08d14ddf53cc1117a63636844c1bc13a0507fdae6f1fdd167bfa23432e48133ac271d954fdb510b9c5a31df5c69fcdfe3f1005fc59b5ff6f801b31ff68685b0b

    • SSDEEP

      384:33kecIqnOJxu1A6e6pXtbWPTLTHXDw1Ah9+KvCqi0T:33keccJxd6nKvTTzhQuCqi0T

    Score
    1/10
    behavioral19behavioral20

    • Target

      tmp/pma_template_compiles_locati18/twig/c9/c99089dcf40c044b080a5e49c1941410ebefbf16c11c8ac7013e2c2888e8cd09.php

    • Size

      4KB

    • MD5

      344442f6c0928fbcb09c3c6be025613f

    • SHA1

      4892297cd441ee419ab0389077a11ee955baea73

    • SHA256

      282f97e4fec1e89912941731b13bbd3cc13c0138479e8a86c4f6861cd0b67bcb

    • SHA512

      12f4c6acdbd3e1951b806780647685d73507bfabbefa1490ea4bab53ca60675dd7bf97e00788bcf87ad976915411ddccfd9d97dc9c498e2d778fa92ec7b783f8

    • SSDEEP

      96:3dq4pkcu0nuqQd5NZxO2oLWd86T5BWoyEP6KNF:3tkb9XZxRdeoyo6uF

    Score
    1/10
    behavioral21behavioral22

    • Target

      tmp/webalizer/index.html

    • Size

      9KB

    • MD5

      1a88933ab960a8f348bd97edbcff72b4

    • SHA1

      2b2ced6a005450f9e698eb01e8197cdca9b2a888

    • SHA256

      9e0c7e15575f5400cfa3c555add1e3060d1e1a24fe29abe051071057a7c63e77

    • SHA512

      1463334803c33e7d79b12a88a016dc12de668dbd4326f952f2e67a584279e72df89bd05abd4c31f1fbe7bb523733a6e227f0a1d8d1d1410b1b8595d6109ca07b

    • SSDEEP

      192:v2X3QUn/j9OPnsyJ/X7TMgtxZjQTaRjt9tQSmtteAtTnjZOgw3GsnpTAUslGh0t9:eXnNA9h52

    Score
    1/10
    behavioral23behavioral24

    • Target

      tmp/webalizer/ssl/locationkw.com/index.html

    • Size

      9KB

    • MD5

      15e39bf16728f3b8567937df3f39b5de

    • SHA1

      92aa3c9b967b6df898afd52322a2c7fd631d48fd

    • SHA256

      e3894f9bd10007a9ca71fe081d1a43b2d976cae5cf6ea5c8d08f881c3304758a

    • SHA512

      bb15d0b9b0bacc976a730258826d803e699461823850d7753788a5718be76bfde53ad2b22a2ebd45b97b446d77fcc4779fc45e06324df5ddde0aeddcd443663d

    • SSDEEP

      192:v2X3QUn/HxDN2eOFr1ft5G+W5eaRVnscIcEy07BhpR/ewpGeAAlw3X2sGqYqEdbZ:eX6LU552

    Score
    1/10
    behavioral25behavioral26

    • Target

      tmp/webalizer/ssl/locationkw.com/usage_202102.html

    • Size

      51KB

    • MD5

      8ee9c82e4c0cef9569b50508a9ed9b22

    • SHA1

      835e907ba6a83d008c9b19d408c31110a25334e8

    • SHA256

      afac8d92d5c6866386a4c9505b3ae6fd8dc99decc5c232e9ef0ad94818e0d601

    • SHA512

      4ddf298dd4a9c8a48e3a05d39159f526a0b1805c6051975a84a464e3cdc7b4f9f873139320eb9f900e07df011442f220c7aa15ff408a94688d8403380909a245

    • SSDEEP

      768:plP515lbXiA1KwJ2J2hK8ZIwxVErbbb3bbbEbbb5bbbObbbbbbbunxUZj2ZTFoPd:plP515IISF1tqDcKf52

    Score
    1/10
    behavioral27behavioral28

    • Target

      tmp/webalizer/ssl/locationkw.com/usage_202103.html

    • Size

      111KB

    • MD5

      d38b75dcbe671f9ed9f126b74944e5b1

    • SHA1

      237968a108ef44bec5502b5bba5732c217e8b3fa

    • SHA256

      1bf6511ec44126510c9e3a9210207751f242cc83065aed0e98e0684173ea67bd

    • SHA512

      7819e8be8866fa2de910c5b60855ac7f07098078859ffa83e1d632e5318d8ad3b8274c3aab7a0526562f809b3907411a59a1c42d27d93c2c69c4d20b1c3c0c7e

    • SSDEEP

      1536:EmMsk29SSBWRzc/8JxPwgRazQG6GjfRmn52:EmMsk29SSBWRzc/8JxI8azQGLjfR652

    Score
    1/10
    behavioral29behavioral30

    • Target

      tmp/webalizer/ssl/locationkw.com/usage_202104.html

    • Size

      112KB

    • MD5

      3f7f9b116c3d20c5ebb36f15c65af720

    • SHA1

      d3e6b870be689d1c1d7981d6db058949fab2d8c2

    • SHA256

      8056596e4764caacaac95ebdba96f035e353038b16e23389ab4a46d84bf9cdfb

    • SHA512

      36273ee5104845faaa1a04e4a1353c3fff4ad1183fb90eda5bd0d60d9f460581b8188176fe2840bceaa64ddaca5d02839dbe572429c35e7aa1b01da2c5fb5c3e

    • SSDEEP

      768:HvTdCBCeQR2sPM/q7Btn+IkAx2KOJN8B80CCAUV7zOmgOuWgt9Gl5FuXSd4W7wGP:pGtLODSv24H83RSnBvhKjI8SFPXhx52

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks