Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

Construct ...on.exe

windows7-x64

5

Construct ...on.exe

windows10-2004-x64

5

Construct ...er.dll

windows7-x64

1

Construct ...er.dll

windows10-2004-x64

1

Construct ...mon.js

windows7-x64

1

Construct ...mon.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...mon.js

windows7-x64

1

Construct ...mon.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...mon.js

windows7-x64

1

Construct ...mon.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...mon.js

windows7-x64

1

Construct ...mon.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Construct ...mon.js

windows7-x64

1

Construct ...mon.js

windows10-2004-x64

1

Construct ...ime.js

windows7-x64

1

Construct ...ime.js

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Construct 2 - Overdrive Edition (Construct Overdrive).rar

  • Size

    176.3MB

  • Sample

    231116-13skfahb54

  • MD5

    59a2226e4f2f1dcc5b812eac98c7e671

  • SHA1

    13f59ea68c045e4d9c12a33408cc5953e1d66518

  • SHA256

    bd3bcd0bd245b41f8237bea5382f27dd6f699f5827a87ff559311c014a97b41b

  • SHA512

    378c4ee0132a03be62746729638c65ac3d2359f5354fa554f9d3b8bb58563a0cc5c37282af7a0122cff03373f3031e878d202841289898ba9358a5ccff23ddcd

  • SSDEEP

    3145728:th5KLOoA4rx9TxEr4iv5uDa1zsefdTMIhe2pR1pyewYeyfUF3LiCA6JjoMSZ5SY9:zoJrETvsuzsefSux1pyAeyIGMAUg2foV

Score
5/10

Malware Config

Targets

    • Target

      Construct 2 - Overdrive Edition (Arquives)/Construct 2 - Overdrive Edition.exe

    • Size

      41.9MB

    • MD5

      7b429c47fd0e69e6ee2eeabe6680b0eb

    • SHA1

      8d6412039ad7ced1232e184e80fe031c280b44b3

    • SHA256

      099f9ee49743141334f68361d7492301e3678b640526da95cb54e6a2f1bf5dcb

    • SHA512

      177242c692e4fb821ecb0a00687033d21838a8bde7db2218a934086cfdaf6149bdaf53b91aac62a77a2f342b7a59473771e225a772913bb2c0c00637b81ce627

    • SSDEEP

      393216:W+vNN/Nrr8Ttc2Hr5YHcXbH5i3ha/oa6ZXI:W+vviRHVGWZOha/ozI

    Score
    5/10

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      Construct 2 - Overdrive Edition (Arquives)/SciLexer.dll

    • Size

      1.1MB

    • MD5

      6205933d876c9e208cfa9ce0a7ac8588

    • SHA1

      5503774b1db73047bfcf89f4546f95a0e4197339

    • SHA256

      0490917af7ad9385ca5f11b530300188e34de11357d86b2830ce6b052fa3189b

    • SHA512

      0f7824fe52fa8f093df5cf80a867f5cae9a70c25fff31c1833252685669177bf3060cf523cad634a3724fa5ef733e13ec00eada6420c069609234bdee200062a

    • SSDEEP

      24576:mL68F44edfy9Hb0/bN7XRKi1NTlyqkNEXGsu:mFF44EgHb0Jjsi1N5kOGsu

    Score
    1/10
    behavioral3behavioral4

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/8direction/common.js

    • Size

      129B

    • MD5

      a7649504ef0f279b2ccfc47c7e3355d7

    • SHA1

      6cac2d0ccc4d7f4f6446b0a89feb76b86c59c6a1

    • SHA256

      d4408b22912548cd541bc5fcf96abe5ac500c0a3b6a0973a76eaec739b21e7be

    • SHA512

      b69f33cd9a968853daec04ceada06a3ce38c113aede2fec214ad1b0cd1ce734c5602f695d09480676fb92e1ff871bd4121946190fae85a39072550c8d7d76cd6

    Score
    1/10
    behavioral5behavioral6

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/8direction/edittime.js

    • Size

      6KB

    • MD5

      818f3f31d02d4ae5c4d0da6644c83771

    • SHA1

      6bb4abe14ad6a0a473fd54cdf1db6961ba8ddc57

    • SHA256

      fa6d9f31405dc1696d0d9e9082223a5e3768d2c36dabf22780d1b5de05a75a78

    • SHA512

      0a37f84a18f2bf7cb7d32e8a9b4da00b803e8ea64722c61d3292f58d3d4bc33e791fd316336487b7b2037274c5e7cf134070707fbf3f5fdbbafc15dbff1b921a

    • SSDEEP

      192:65H6nAXLxWLbk1E1U9bXLycEzk1IZmsJnkDYBjGVBjh74JNLhNNA3Ahb:O6AbxWE1Ey9bX2cEzk1XHDY9GV8JNhkk

    Score
    1/10
    behavioral7behavioral8

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/8direction/runtime.js

    • Size

      13KB

    • MD5

      4631a9fd329b083f15f4c300780c3d4d

    • SHA1

      43da120743ba7fa081c4afcc3f038916b98f7101

    • SHA256

      96be957444cdf43b483db0c9ea83d0ff3ea83b216cddb5f2676a428701806439

    • SHA512

      f91c938aab6547b8140b3cb6fe6428bd759158117b151cc8f174169c171552b2f4aa17dac2ff189124701a0826bcc44c02a96a3a9cceb2ba02e12bdf08c1a943

    • SSDEEP

      384:FFqpY7QZlzNtLHuUf73Y5zF6OTpscoiikMYxfZmGd0M:FEjue3EpTi2ZH

    Score
    1/10
    behavioral10behavioral9

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Bound_To_Layout_Plus_1.1/common.js

    • Size

      129B

    • MD5

      a7649504ef0f279b2ccfc47c7e3355d7

    • SHA1

      6cac2d0ccc4d7f4f6446b0a89feb76b86c59c6a1

    • SHA256

      d4408b22912548cd541bc5fcf96abe5ac500c0a3b6a0973a76eaec739b21e7be

    • SHA512

      b69f33cd9a968853daec04ceada06a3ce38c113aede2fec214ad1b0cd1ce734c5602f695d09480676fb92e1ff871bd4121946190fae85a39072550c8d7d76cd6

    Score
    1/10
    behavioral11behavioral12

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Bound_To_Layout_Plus_1.1/edittime.js

    • Size

      3KB

    • MD5

      16c8b3762079d24821dc637fef62f3f3

    • SHA1

      122a79aed63bfa011927bdd58606db2428082014

    • SHA256

      2c12744cf8f18427723eba455bccc31f19614e84e9cf268db0e0c23238205964

    • SHA512

      ae2c0417984e1e1586926317b1d29cfc8fa31a680d893bbc946ac2cb4470bd55b0030e2b31388a60c59158260a68510fb15a8cf4c3b58c85d86187679fa6429d

    Score
    1/10
    behavioral13behavioral14

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Bound_To_Layout_Plus_1.1/runtime.js

    • Size

      3KB

    • MD5

      eb56b9483446d450056e485627b45d8b

    • SHA1

      d71664adff6ffd06360124a29377691188e92fd6

    • SHA256

      24484a4d64fad6fd34ddf0ccd38ae23f7a48a4a4432470abf189b1d5ea9dfcbd

    • SHA512

      038392d2875f039e15d22d994c7d3ccb742e2f17fc23d0929e3140de1c68c3ae9dbc7551e1739a146bc8494ce6ea97d5652fa87a59f4ce6c9b791a48bcd4d823

    Score
    1/10
    behavioral15behavioral16

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Scroll_To_Plus_1.3/common.js

    • Size

      129B

    • MD5

      a7649504ef0f279b2ccfc47c7e3355d7

    • SHA1

      6cac2d0ccc4d7f4f6446b0a89feb76b86c59c6a1

    • SHA256

      d4408b22912548cd541bc5fcf96abe5ac500c0a3b6a0973a76eaec739b21e7be

    • SHA512

      b69f33cd9a968853daec04ceada06a3ce38c113aede2fec214ad1b0cd1ce734c5602f695d09480676fb92e1ff871bd4121946190fae85a39072550c8d7d76cd6

    Score
    1/10
    behavioral17behavioral18

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Scroll_To_Plus_1.3/edittime.js

    • Size

      4KB

    • MD5

      380210061a57b057fbaa0b5d5788cccc

    • SHA1

      431f2875109ab10d56f8017a165c9f5b51789957

    • SHA256

      82c19b2821d84d536fa4d0cc25ec794517eb8dc40b02bd6db845b21b8ab46c96

    • SHA512

      22e8adba139871bd94bd781e8c6d5eef111237629d345debd04bb070cd5b202907d423df134e79042c191e2bcee68ba9e0b55c1f49726464f665e74e20365894

    • SSDEEP

      48:QNWRcbVcA+JRoWNGRmFdWUxSsUDYYK44bN62NgPPqEPCTH6PCnHFPGVbHkP2cz8E:qZSJDOtmGL3Ah3

    Score
    1/10
    behavioral19behavioral20

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/BHT_Scroll_To_Plus_1.3/runtime.js

    • Size

      6KB

    • MD5

      1dcfd83d6037689d08c42f7e320c839b

    • SHA1

      0bad18cba9e03bb6d2a09adb13aaa7a6a32fdd88

    • SHA256

      da3085680c8f317d0b1c4310a3359c74e952507ecedcaa0427c11b337b0e980c

    • SHA512

      4b90917da802304e673fe8bd88f3a21a8151e4fcdbba7ecc37f9c6ef635ba554ccf28d5d14f537fa6e986dc4ca69b83ff055a689f4ba1a9b2673fcdec11766ec

    • SSDEEP

      48:WoQpzLV1GxY8hGopZEX/Q+B6TGJKuzO5AYGb2KgGU2GIhNeBkthkZkAb3aO5PNa4:WVIS/gecZkSPYLaeOB7wN9BAnh

    Score
    1/10
    behavioral21behavioral22

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/Brian_Jack_GauVeldt_Ease/common.js

    • Size

      129B

    • MD5

      a7649504ef0f279b2ccfc47c7e3355d7

    • SHA1

      6cac2d0ccc4d7f4f6446b0a89feb76b86c59c6a1

    • SHA256

      d4408b22912548cd541bc5fcf96abe5ac500c0a3b6a0973a76eaec739b21e7be

    • SHA512

      b69f33cd9a968853daec04ceada06a3ce38c113aede2fec214ad1b0cd1ce734c5602f695d09480676fb92e1ff871bd4121946190fae85a39072550c8d7d76cd6

    Score
    1/10
    behavioral23behavioral24

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/Brian_Jack_GauVeldt_Ease/edittime.js

    • Size

      9KB

    • MD5

      0662378182913bc2a5d7b29f626c2e23

    • SHA1

      8c1daaae96d67b5cf10af588492a7c2a08af0112

    • SHA256

      36979d33bdf682ad5c838839b728c1c8e633b0f7acb529c7a702de952204fa58

    • SHA512

      db947f315df83217d1af39d561e65c8ee4d51ccd1dbc274e11bf0fb7514b938f9c4f239c46574485dbd2906f254059a5be779fa195817dbfc67ebd28cbe0e0f5

    • SSDEEP

      192:NYgTJ1jFa8KWHT+Kjle2EmoChtSl3uoswy1PQ5HdAh3:NY4J1jFLKC1mN2h3

    Score
    1/10
    behavioral25behavioral26

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/Brian_Jack_GauVeldt_Ease/runtime.js

    • Size

      6KB

    • MD5

      f01a06422291b37b9a6230872eb7a8af

    • SHA1

      bd7bb5aefd991b0beca4674779d2689777d7160e

    • SHA256

      84cea73950a1e832766f3162244effb17fbb7de50babf2f93ec33dee9359da37

    • SHA512

      09d7f0e0f4be3e0f9d60021c36a1844680e2b120be97c2b9cea3619687c950d8888af3757addc85b0287c51698d4a65c1ec1c8a8818d5de5b291c74e8a631120

    • SSDEEP

      96:N75AbXLdKukHMlIYIMlIs76nh673lUhsZZcsML:N75GXRK3MkMt8k3lUyZSsML

    Score
    1/10
    behavioral27behavioral28

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/Carlos_Campana_Hadouken-Imput/common.js

    • Size

      129B

    • MD5

      a7649504ef0f279b2ccfc47c7e3355d7

    • SHA1

      6cac2d0ccc4d7f4f6446b0a89feb76b86c59c6a1

    • SHA256

      d4408b22912548cd541bc5fcf96abe5ac500c0a3b6a0973a76eaec739b21e7be

    • SHA512

      b69f33cd9a968853daec04ceada06a3ce38c113aede2fec214ad1b0cd1ce734c5602f695d09480676fb92e1ff871bd4121946190fae85a39072550c8d7d76cd6

    Score
    1/10
    behavioral29behavioral30

    • Target

      Construct 2 - Overdrive Edition (Arquives)/exporters/html5/behaviors/Carlos_Campana_Hadouken-Imput/edittime.js

    • Size

      7KB

    • MD5

      9503ccdbe4c415161097d14e4fdd1b7e

    • SHA1

      6f6289b3211a97691cd1d55fb67bc329feb92576

    • SHA256

      5d6f7294213224f6065e17cf03a01e50d4ec895e6e1c289ab6488abe6a8af673

    • SHA512

      4ff211a26d214e1cb55b1dfa632025939f37d5f28733d0f049e821ea8325da2ffa7b5466cb46417cd1360dbdcb61d108f23fad2b0999d511583553ecd62fb9f9

    • SSDEEP

      192:j8dVw8cTJ1jFa8KWHTnlK8OxQ5gysdAh3:j8d280J1jFLKC3fs2h3

    Score
    1/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks