Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

mediawiki-...api.js

windows7-x64

1

mediawiki-...api.js

windows10-2004-x64

1

mediawiki-...ed.vbs

windows7-x64

1

mediawiki-...ed.vbs

windows10-2004-x64

mediawiki-...e.html

windows7-x64

1

mediawiki-...e.html

windows10-2004-x64

1

mediawiki-...n.html

windows7-x64

1

mediawiki-...n.html

windows10-2004-x64

1

mediawiki-...e.html

windows7-x64

1

mediawiki-...e.html

windows10-2004-x64

mediawiki-...Log.js

windows7-x64

1

mediawiki-...Log.js

windows10-2004-x64

1

mediawiki-...ger.js

windows7-x64

1

mediawiki-...ger.js

windows10-2004-x64

1

mediawiki-...oup.js

windows7-x64

1

mediawiki-...oup.js

windows10-2004-x64

1

mediawiki-...le.ps1

windows7-x64

1

mediawiki-...le.ps1

windows10-2004-x64

1

mediawiki-...tor.js

windows7-x64

1

mediawiki-...tor.js

windows10-2004-x64

1

mediawiki-...kup.js

windows7-x64

1

mediawiki-...kup.js

windows10-2004-x64

1

mediawiki-...or.ps1

windows7-x64

1

mediawiki-...or.ps1

windows10-2004-x64

1

mediawiki-...er.ps1

windows7-x64

1

mediawiki-...er.ps1

windows10-2004-x64

1

mediawiki-...er.ps1

windows7-x64

1

mediawiki-...er.ps1

windows10-2004-x64

1

mediawiki-...ger.js

windows7-x64

1

mediawiki-...ger.js

windows10-2004-x64

1

mediawiki-...de.ps1

windows7-x64

1

mediawiki-...de.ps1

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f943688b7c4b5cd2112e88b891e352a2cd2eb8c54f08d6b3efdfe3fecd1b2c00.zip.zip

  • Size

    60.4MB

  • Sample

    231107-rdlwxshf66

  • MD5

    5d6b76f471870932ea9041b4bea2a8fa

  • SHA1

    7117f5bb9214d474e5361edc36caa3a0234bb046

  • SHA256

    a971a83eab497174dd60b07b3e845c8340ffac2f9e2b754668c84dd4d0629b29

  • SHA512

    e1c6ce3e5df911ea876b96c82cbd202d731522d872925a459e3571560ad48900ace7c8278df305845e7eca1acab5f64fb38b79d2ddd39bdbdb5a1c49cbb79c99

  • SSDEEP

    1572864:E2uoTvEQxlwc6pQKcZdboOI87M2NxzjUmyjcX:EIwQML3cjoOIiMUlpdX

Score
10/10
evasionpdf

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://www.mediawiki.org/xml/api/

Extracted

Language
ps1
Source
URLs
exe.dropper

http://www.w3.org/1999/02/22-rdf-syntax-ns
exe.dropper

http://purl.org/rss/1.0/

Targets

    • Target

      mediawiki-1.39.1/api.php

    • Size

      4KB

    • MD5

      72910e2ad91124c71ddfd3885babbf04

    • SHA1

      0700c8f8862015dc29b2cad5cbcb21df7db7dbaa

    • SHA256

      61733eee4041f831215b321a5ffe9ed7016e12f29e480cef9b5d426d3bd95035

    • SHA512

      44f607bbe21d681d7a19db68d51ab7459f3f51f2a3b2f8353961623c5b24980a7e478f977f346374e58e5d1cf01abeab562333f525bc0db4846dd0ad9ed80109

    • SSDEEP

      48:hCgGn050uQyxsdVD0ix7RMBE1sU65rYt70A9Nl3Blpk73kqTGbB3wyIoqifOCRRz:hCz0zIx7stJUnZqxSCiYh86MXD

    Score
    1/10
    behavioral1behavioral2

    • Target

      mediawiki-1.39.1/docs/memcached.md

    • Size

      7KB

    • MD5

      e6de116ae9a5e78d102775baf62e026c

    • SHA1

      c1562c4d2cadbaa786a062768e46c64f566e88b7

    • SHA256

      02810df0b1800ac879c659f5b024927c8b56af1c15725fde2774352e58bc1e6b

    • SHA512

      fd0d0eff4b1c2766de86f75a962106f5fec53fffa814271ceb884d5ad71a566e7defd3792e427321fa9e321208212078c8c25dfc434ddaa3a855f9537d08a9aa

    • SSDEEP

      96:J4cmfHtC4DLBMaB7E9ctyBFgTGwoR7q7gvLOw7dFtyVrYAxVpOamm4st66gXNCxQ:GfB9MH9yK0YREFhmes6gdun/2h

    Score
    1/10
    behavioral3behavioral4

    • Target

      mediawiki-1.39.1/docs/uidesign/confirmable.html

    • Size

      6KB

    • MD5

      95a95ed35db07cf9d0fa78f2577dface

    • SHA1

      8636a7664d187bc683d364a6c8f80eb852cc9e32

    • SHA256

      f875cbf265ae8fe276acec4c9b59d32aea10e6348d23f68a3d4bc79f3d106872

    • SHA512

      6f1a54a81cedc7195c330bf64ed3c07df9462024b3e02b6a9b9c10df88d62f31b0cb154f36dfa608b3a862bdb73d321e4b6eb7f281c422f22b1ae21458ace01b

    • SSDEEP

      192:iKk51+AdUQswn3Juz2JPeflJeJLQiEXMo:ib1j+QjJu2JGJeJ9o

    Score
    1/10
    behavioral5behavioral6

    • Target

      mediawiki-1.39.1/docs/uidesign/design.html

    • Size

      1KB

    • MD5

      3eade35d9598853263ddd1d52deab2e8

    • SHA1

      b4f8bcee80c95a7b335603efb5974588a9d545a0

    • SHA256

      34ca28eb91d599415246a25a289ff84513764106a60904334b8129e2c88ace17

    • SHA512

      22e254ffcf97dfcbcf86f3cd172e9fcfdbb760ec1261e51655b3a4b6edc6eb3e77490493ff832f46ca18a226d731d2406163606f41a0827f9da860905ebbe865

    Score
    1/10
    behavioral7behavioral8

    • Target

      mediawiki-1.39.1/docs/uidesign/monospace.html

    • Size

      3KB

    • MD5

      d5a4f316904c98172a54b389ceea8e95

    • SHA1

      95fba10fdfc8d11b355cf64c42610621a7ed8304

    • SHA256

      df10c436635c182cfd028bf71ceee412a088ee9f58eb25fdecf77c6601fdf7d9

    • SHA512

      ac5526c3da8ea587ba04e109d962324e252c72eaee02fcc54138ac874d745047c59ed2b4a5539173b179184feba61abc0731c03c96077102436da6f50049ae1b

    Score
    1/10
    behavioral10behavioral9

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Api/QueryAbuseLog.php

    • Size

      12KB

    • MD5

      768856f500f61414c4d51318e14059f4

    • SHA1

      f0e4ad595d172562237632d5b1ca9f2df225cdd3

    • SHA256

      dd28a53ca681983bd64ceaa26197384c225e76fcc36574da926cc061a8c2fd5b

    • SHA512

      dd0dbbb82f715e923ba1f5de8e4581fd6213d827df7c19198a48bcb0abc56b47b0bbfc5eeee7ff94e370d822eec700c936de93321d55da4ca7874e61583fa0ed

    • SSDEEP

      384:AqIY3P+TPByIs9yeYVObimVKTBvInpqpS/Vijx2joFMlSpLmdr383rBT2M/PM70+:ASP+TQ9yz0bFBnAgSZy

    Score
    1/10
    behavioral11behavioral12

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/ChangeTags/ChangeTagsManager.php

    • Size

      4KB

    • MD5

      e64e36d0c9e1d481383c63915717cfaa

    • SHA1

      9f1cce26fb6221e95edd62aa880f6d44166c99ce

    • SHA256

      6771f62070c4804a1378327c639661b672fd6588926fc769e94887b96026a5ff

    • SHA512

      496d0d9066379c54d81e67514584a819cf99357598c5b3d6de2e3bcd3a6c28ef0ea9a79a046cd1c7da99f84c63a6df779d947766d0da2d94423d9b7966aac167

    • SSDEEP

      96:ol6eu1EZSmzZGvcfsQGYoAQdUPLYPsXrKhaR1C:06eu1EZS4ZGg+U9O

    Score
    1/10
    behavioral13behavioral14

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Consequences/Consequence/Degroup.php

    • Size

      4KB

    • MD5

      ce031220bd46aac6ee087e4e8d78a327

    • SHA1

      57adf517e6b5bbb38a8933b400efc62112a4d095

    • SHA256

      c66f36c446e85a629a5b720aae7b049a20c21318fdbc8d0ca34dd142250a1605

    • SHA512

      851400b8c8dd51b40c6c0008495e52856e96cf662d9cb5d72284200d27bd17c096cdee53a12e40e81741b670982d74b0726fc792e8c94497d6a045c66b401df8

    • SSDEEP

      96:DcOaXN0QkqA6PqADtKl1XudjdM1eV1vJm3IrbkGTuZ91cRJ9I9Sx3uBNfMxEGTuv:s9JRownRIgJRuBUo

    Score
    1/10
    behavioral15behavioral16

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Consequences/Consequence/Throttle.php

    • Size

      5KB

    • MD5

      ca1527458cb5e72b8b7bd90db8f32f16

    • SHA1

      3552f3aa2ec82249bea633b793fbcd13dedd0944

    • SHA256

      186de2e6f4bc930a89355769e306820fedbdd0df5ffca06b5fc221cae8e54670

    • SHA512

      5027949e5c7d7d1dc2ef23df56770823007521f99dcfa790cb2aa73fee14f4a1ce1448663e2d0f7b8ed86feb395111099be13aa54482ef8b8c2e68ae4b7e54f6

    • SSDEEP

      96:DPT1I7o1ZGcEKaS9jYT4JtyTvt4MYK+j7WACh17i26KhqIIrzEE8FvKOqrmgMl:LT1I7o/GTKaS9jYkJQTiB7WACcKk/ekI

    Score
    1/10
    behavioral17behavioral18

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Consequences/ConsequencesExecutor.php

    • Size

      13KB

    • MD5

      0fc29a5faeb76c9fdb14b9174a60745a

    • SHA1

      705a7a2fe3ef0c7a56abe3719538d056077628d1

    • SHA256

      9b0b7c25c34064452d8f4d824a5f5ab62f2e58e2d421e4626aef01f151ac500e

    • SHA512

      100155dc8bf464861bfe2d31ccd9b0a71a07acd987f76828b315fd0f8919901a5de3b9d7d542e280e5222d17a19dfd5a2dc745e269104ac2818fcdb60f696557

    • SSDEEP

      384:bm6H1ejyw/Ouuqy3b3JAFUkQ81tyJEgWrY:bm6H1eWhGBS9

    Score
    1/10
    behavioral19behavioral20

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/FilterLookup.php

    • Size

      13KB

    • MD5

      88b750f619f621d5d858bf67c092c64f

    • SHA1

      f11f7aaabe7b5d78c5936b2da1309153ecb3e6af

    • SHA256

      b05b7a5c196e3d39d05e225513bcf92664aa3563e6ee8f5a47b3477790e6fea6

    • SHA512

      a839f6722e855a5ec5940065144c6af8508416f0de8ceecc687b50fdf429e021756cd0cfd7adf7e81385ce9e76a3e15b8d257383b7b922f6ec8434ebb4da7463

    • SSDEEP

      384:iNHTZj7FeSL4EuOOhyJ3yOZJ457a6F83e9Bn+9aXHhDG2UucaecKeBjahRf+3hxr:iNHFj7FeSUEhCGyf7ZT5B

    Score
    1/10
    behavioral21behavioral22

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/FilterValidator.php

    • Size

      10KB

    • MD5

      64099dff6c18e61b104ee34ce230ee94

    • SHA1

      db320d2e2c29d2918b4ce2e9752647e2eccc4bee

    • SHA256

      e051d33e630eb0223abe33742c71922f5dbb1a298b3f4df81a063c06c01c45ea

    • SHA512

      5c0314cf6eea44a736eba12c2b44a5caabe45671eb7b8c90a80621d1ea8881a479101643ed16f4be47a12ceb4091892607507da6a41827359988a136713d379b

    • SSDEEP

      192:iBhKyi+np9VLA9hDQuP2qyd6OwhMT55BcdCzpVJT:izKyi+np9hA9lQxqydzwWRVJT

    Score
    1/10
    behavioral23behavioral24

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Pager/AbuseFilterHistoryPager.php

    • Size

      7KB

    • MD5

      46a63061c744242fb44b292edd24fa47

    • SHA1

      8f50b1c207302bb46000f72328e02a5fb419d4d3

    • SHA256

      24e8749a30a3fe3e5b3cc91ef56eaf32414d9e0bb98ab5dd89cb905ecb364833

    • SHA512

      79006de303d1ce5bff0f4f53146cfe67c0c300b48798444a97c837fdc0a5e5ba6afcbcfbebb6492121af02d293d8fda930f07ad64a97e63ce209aa14877eaa5b

    • SSDEEP

      192:r3QOwBhSPh0Sq1KDlPFssqaVymdA0NQNee6CsGTlygXpMXJZRUf1EQ4RhwVNsnxz:rgg6J+vymdA0NQNVBlygXpMXza1F4RG2

    Score
    1/10
    behavioral25behavioral26

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Pager/AbuseFilterPager.php

    • Size

      11KB

    • MD5

      e6e553852d3eb051eb547a125c715037

    • SHA1

      1528b00ae72d2dcb3ef308c960446c73ff841eb9

    • SHA256

      9fa29112bdb2ac2ef9ca56b3a120264f396e24a63b98b383db8c05ee0d2e6ba3

    • SHA512

      f9c8dda4dbd10587c5fc9967a62d8330ebdec3fc0aa86cd526d0c495a59dc0cd06dca576ba4eb9113fe87a7227df11cdc14af8a783e3d6f58d74670a15afa2c5

    • SSDEEP

      192:r5K2wHZhLIh0dqn0CUf1EQuJNgA3n+H2AJ242M3+Gj+UWaYIUIs1NSWlyId7rVrt:rAZP/b1FuJNg2n+H29IYNSWoId7rVrfF

    Score
    1/10
    behavioral27behavioral28

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Pager/AbuseLogPager.php

    • Size

      12KB

    • MD5

      14d2501a0a3fd473d4afb8439ef0d51e

    • SHA1

      5deb9b6ca781a9d2ce742e810e246d9568320a26

    • SHA256

      f49cc26b7f060e1a4b4202e68c0e901e51aefe2e89b17c04343541180f618dc8

    • SHA512

      22fd458264ec9976d52ddcc8a8c480808ab3de96a023d189b7b67bf3c30a9e077bb78fac4ac3f34100861d905e8117ad40f252413f1c6359fd4ae93192a3cc49

    • SSDEEP

      384:rn5HulVJ2VbMmpEc/E+7VRQETryg8OrKeuYVQi59wq4gWfqbBlrpXQR0e4YDkq1b:rn5HulVgMmxLCk4nv14YDkq9

    Score
    1/10
    behavioral29behavioral30

    • Target

      mediawiki-1.39.1/extensions/AbuseFilter/includes/Parser/AFPTreeNode.php

    • Size

      5KB

    • MD5

      277d6821b634b9663192a36621b54dc0

    • SHA1

      9532b480f825f14e61ba168266d7071fdc51a17b

    • SHA256

      5cefd9768464f8b6a25184e03ffe073d494074e990fe17e0ca45f3b0db82c22d

    • SHA512

      101f804360d2be49ac41bd2609fc2073db413149a9a35a50a2fceeb27475aaf0616fb805db5298dd89390d72d4ba7d2a9317427319c93eff67ab5ea126eae4b2

    • SSDEEP

      96:HIayTfUOTLOz0Kocnek98ENUWmKCRu1oWqGZICmYWoTpBRkneIXukpEBe0ozNk:H2+7cI9kpr75k

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks