Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

AutoSettin...ck.bat

windows7-x64

7

AutoSettin...ck.bat

windows10-2004-x64

7

AutoSettin...ck.bat

windows7-x64

7

AutoSettin...ck.bat

windows10-2004-x64

7

AutoSettin...cs.bat

windows7-x64

7

AutoSettin...cs.bat

windows10-2004-x64

7

AutoSettin...rs.bat

windows7-x64

7

AutoSettin...rs.bat

windows10-2004-x64

7

AutoSettin...gs.bat

windows7-x64

1

AutoSettin...gs.bat

windows10-2004-x64

1

AutoSettin...7z.dll

windows7-x64

3

AutoSettin...7z.dll

windows10-2004-x64

3

AutoSettin...7z.exe

windows7-x64

1

AutoSettin...7z.exe

windows10-2004-x64

1

AutoSettin...er.exe

windows7-x64

1

AutoSettin...er.exe

windows10-2004-x64

1

AutoSettin...le.exe

windows7-x64

7

AutoSettin...le.exe

windows10-2004-x64

7

AutoSettin...PO.exe

windows7-x64

1

AutoSettin...PO.exe

windows10-2004-x64

1

AutoSettin...64.exe

windows7-x64

3

AutoSettin...64.exe

windows10-2004-x64

3

AutoSettin...86.exe

windows7-x64

7

AutoSettin...86.exe

windows10-2004-x64

7

AutoSettin...64.exe

windows7-x64

1

AutoSettin...64.exe

windows10-2004-x64

1

AutoSettin...86.exe

windows7-x64

1

AutoSettin...86.exe

windows10-2004-x64

1

AutoSettin...ks.ps1

windows7-x64

1

AutoSettin...ks.ps1

windows10-2004-x64

1

AutoSettin...ho.exe

windows7-x64

7

AutoSettin...ho.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    51e5706578117e5696ab3a78a45b95b9

  • Size

    6.3MB

  • Sample

    231226-eey7esaaeq

  • MD5

    51e5706578117e5696ab3a78a45b95b9

  • SHA1

    c8ac921d8da18cf8ab992743ac9fbbfa43a68c58

  • SHA256

    a22f393576c3c8fa3ade88102fa98dfc93097d15b4c453ef676f6daaefffa592

  • SHA512

    7264750f6e9105466cf81eb08ce98253daea46e5bfdbf22e8146988e79b53c281a5542df1064bb585d1d4374e38f64244e36623c158884c0acea0d1d2a7a9475

  • SSDEEP

    196608:uUyIgjsxTDLDahvFoXfHSX7yXm1oBqeV2mcC+PGT:V3ss9u3TX2Xm1oceV2m7+PGT

Score
10/10
upx

Malware Config

Targets

    • Target

      AutoSettings/Check.bat

    • Size

      111KB

    • MD5

      8de1beb7c5e0ff6e71b001dbe92385d2

    • SHA1

      a100fe979553a0993d916c76ba5e0e87717af3c1

    • SHA256

      798e841f8cc6a5fd3f27670bc31d3f89c62e5e3a2d0515c9719cf503a24b8862

    • SHA512

      8fbb45e81f037218a9a3bbe6fe97021fdae232d9e845b77800c17664de5d9e4b8ee5f922c46919c358c77e10e0958ed8b7ff307cc1c5de20a4fa52d65923b3e0

    • SSDEEP

      1536:hDE9SdURwRfzXYJEOauvUHyxC69amzkHV:hDE9SdmwRfzXDOauvUHyxCuazHV

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      AutoSettings/Disable_NumLock.bat

    • Size

      1KB

    • MD5

      a89fe1724241c3e26f242c4f60a1cef6

    • SHA1

      a350cc504eec2b7351d436c59ae7405a3b8e9785

    • SHA256

      903408ca653d38c982459e46d80bc2ac0f9774c2ec6e6066218960854d1a7e37

    • SHA512

      1757db7507600e04ee93f24155470c3cffedc5c0b08af196c3b38a8292865cd6435774ed71684f07fa0aa16e2b803a5ded9a271e5f028a50fb3a2e24f2602a96

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      AutoSettings/Enable_Biometrics.bat

    • Size

      4KB

    • MD5

      926b8c39eec5f0cc73f31b3c18619b71

    • SHA1

      de8380ca4fd7b3e5dfc3f6bdfab93f69d12964bd

    • SHA256

      95cbc250371fd9689c08fa08c2ce9ba17c2798adb22778a8caaf4f716d10a785

    • SHA512

      a6983d57287e9a33b0919b98718565640aaa061903dd9fbaa71a55a228832d891a34ad2328855d081805df867e9a6b49ff7e1bc2111fc3b8c040a1b292f3ba1b

    • SSDEEP

      96:fgexK+/VNhXhHsG2Wk0kdKarsUBiTkit5JHiR6PbebTV:IkVNfXhHsG2Wk0mKarsUApJCRUwV

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral5behavioral6

    • Target

      AutoSettings/Enable_Sensors.bat

    • Size

      5KB

    • MD5

      e7af5b1aa32ba337b911509a294ce959

    • SHA1

      6a84fd55c440fe35f2cc71fdca5a7818c80d9127

    • SHA256

      e16d47f43aa3334de3bcf1c3a6234fef05135ca1102f00eda7b714dc651470f1

    • SHA512

      91e712a1f3bdd1c7d58e6b7532877848159c5fb128b1ea24da470ee58489d9a941fa835a8dd863741856046fefa1f401c60e42bba09f6a2ce882bc24b957e172

    • SSDEEP

      96:fgexK+/VNhXhHsG2Wk0kdKarsUBiTkit5JHiRYkXoNRm/V:IkVNfXhHsG2Wk0mKarsUApJCRANRm/V

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral7behavioral8

    • Target

      AutoSettings/Files/MySettings.bat

    • Size

      637B

    • MD5

      0609dda60c5c6f3ac1a2e21155585201

    • SHA1

      6c9ab58e8412f93cb0715534f7f10de402c35ac0

    • SHA256

      1d29b7cb9313e7c9340ec82999a3c5ce477f705bd1ede9f59f34a9725164c224

    • SHA512

      c32c0f623281b7ef6f785bc17e8725033cf86040e7b5dc251370169e88d4834ddf9165671dd559e8bc7b418bd8f5086932591d29c25907864cab2971c7b657c2

    Score
    1/10
    behavioral10behavioral9

    • Target

      AutoSettings/Files/Tools/7z.dll

    • Size

      1.1MB

    • MD5

      04e4f293970589ead1dc19fc8be60c92

    • SHA1

      9ccf48bce8cd04b2bce5eb7b35e5e23b264ff70a

    • SHA256

      6cd22f513ce36b4727bb6c353c58182c7cc8a14cbe3eefdca85c2a25906a0077

    • SHA512

      c4cdbff5e295a516eab64433c16af3cef7ebec9d056ce8732b681fd37deaf389bc9655052ec3e06d14ca3353ebb547ef8ebd5bc78f8083b6d04eee2d9450f616

    • SSDEEP

      24576:Mj9we2ZewSbcRPVRmbPT1DW7k+7r7u7aU6TEL7rn+aUiEgrlfMLBez+:Mj0AqRPVRmbPT1DGBr7arnzhppEIz

    Score
    3/10
    behavioral11behavioral12

    • Target

      AutoSettings/Files/Tools/7z.exe

    • Size

      283KB

    • MD5

      77e556cdfdc5c592f5c46db4127c6f4c

    • SHA1

      9289a79a81e008f349cb05cb851ae5eaef24b94a

    • SHA256

      034eca579f68b44f8f41294d8c9dac96f032c57dee0877095da47913060dff84

    • SHA512

      d2d83056bd4ca654bbf69fe17e1fcad19c3e813d0243e629a29f04b8e375dce278839c21fc18d5e06ff95b76deb574f8c09e50def0b52a81d65acdb69c0d6d5c

    • SSDEEP

      6144:R7fK/4HEQqqKb+oadTxoCJ4P/9IVdZ4qzg9/yDOyQS5NIvPypBpOL34du1v2XywI:R7y8Ah0Hs/SCMOyF5Vk1vs0D

    Score
    1/10
    behavioral13behavioral14

    • Target

      AutoSettings/Files/Tools/ExitExplorer.exe

    • Size

      7KB

    • MD5

      7f4edbc31a22a6c0108a87b51a7c5f4c

    • SHA1

      6fff2e7f573bf702f3ecc1b2ecd3648e069cf6fc

    • SHA256

      2421daf9520e248c23630b87be72f169ae1d4fedd85570060e56d0f755d68b48

    • SHA512

      a61ff11191b5be51c771dcc1a67e9fd8ab1c2538adc0a064de18bbd9962b35afea0facfa22cf1bdc639f0c09a7bbc4af05c972820daa12948043b354f6d3200c

    • SSDEEP

      96:kDrGzkqtUX2lNRKKyIwNuVCieZLMqfospQtP9v5S0x8AMaugzNt:kmkq5nfyIKuVXetMqfotHv5ZMe

    Score
    1/10
    behavioral15behavioral16

    • Target

      AutoSettings/Files/Tools/Handle.exe

    • Size

      523KB

    • MD5

      2579df066d38a15be8142954a2633e7f

    • SHA1

      5f08cc1dfcbd277f607e01bbbfbb34996febd937

    • SHA256

      680327b39d67502103cc9ac8656564529c9a2765adbf563f3145589bcf87681b

    • SHA512

      e9fe542fbada4bad0218441aa12a1a8d05408fd6300d4cdeaec31ccc9b4bbaf70766defd42b7cc748f2cb0a04cb7138d4e993823051949567cd876ef32389030

    • SSDEEP

      6144:yfV+qzgQA7uQnHcjwlkEjA2ZZrTpnHqseZyTWSfbSRk4ewqK5u:yN1gQA7pHcKkQAY/beZDEK5u

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral17behavioral18

    • Target

      AutoSettings/Files/Tools/LGPO.exe

    • Size

      400KB

    • MD5

      db8ae8cda6e089153d84bb0c01d2b7a9

    • SHA1

      37357c2355198db995f5328cb1a06328f33da540

    • SHA256

      f218db26d05c80d105dc779ba4e99c72f37ffc9f78d70d359bbe230713b765b4

    • SHA512

      f7f8951000637603286730b5becfbb803cc48c9f8bc4eb0c678223b407b33a3879ca9d43a0170a4b90b25d3ef88ce57622704b97c5cbe71f5fe5348d50f9b65b

    • SSDEEP

      6144:0IUwdH81zNQ7lly2wbhnjKRyNTG25hO5pepxAOuvfH06JHhl3:Uwp8FNQ73RghnjXNTGshOzeIvsYHhl

    Score
    1/10
    behavioral19behavioral20

    • Target

      AutoSettings/Files/Tools/RunFromToken_x64.exe

    • Size

      848KB

    • MD5

      9b95a6b3999d6610af380ef5dc07a673

    • SHA1

      e12233cc7c2c73e2ea7f8cb431d4e6abb4b0fd21

    • SHA256

      cf6305b1065ed0917c1b693d18ed97d74f53b9298438209715d1bbf971b0858d

    • SHA512

      e68cda1767ed7abdcf2b064bedde8fa641ddcf6ca4c48426beddca17ef1090be897cb7e507be9efd038650825370e800f9da88ef6af007b02ff1c772a2cf1f71

    • SSDEEP

      24576:jmOsLUn3rddAUesIF8WDcanhzO4aYfRo4i:j8A3YkIKWD3zO4akod

    Score
    3/10
    behavioral21behavioral22

    • Target

      AutoSettings/Files/Tools/RunFromToken_x86.exe

    • Size

      352KB

    • MD5

      0cca23703030ff58536ec6698d60a889

    • SHA1

      e0d1d03eb77c0a4b47e2bfd5bf8edded2fd3b9db

    • SHA256

      f5fcd86f2ca31a574d7a087adbc747c7ff5ec53077a5267fe0136f3218646ada

    • SHA512

      038ac525467842615e2b247438498fb29fcfd314536224708853c01cd591dea49b5bd31e6cedb9842c378fde261c910b497baf8d87de6f1a22fc04f71d715091

    • SSDEEP

      6144:Lzv+kSZBbdH19ex4T02J4fqz22tvymTiB62iKnWKKmDTcNwjreOauIIfSN8FY:LzcRD02J4Sq2vHGB67KWKKmDuoq

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral23behavioral24

    • Target

      AutoSettings/Files/Tools/SetACLx64.exe

    • Size

      546KB

    • MD5

      3e350eb5df15c06dec400a39dd1c6f29

    • SHA1

      f1434cfef2c05fda919922b721ec1a17adb3194e

    • SHA256

      427ff43693cb3ca2812c4754f607f107a6b2d3f5a8b313addee57d89982df419

    • SHA512

      b6b6cdfe2b08aa49254e48302385a3a2a8385e2228bdcffd3032757acf1a1d4abff1270f5488083cfa4480439ff161a9d0ea5f193cabc1eb1e7b1255ce262ab6

    • SSDEEP

      12288:ZM9AwIce16TCkcgxjouFmQGzt/B6QziZUt2qaV7se:ZM9Sce16TCkcgxMuFmQGztZZiSAqA7R

    Score
    1/10
    behavioral25behavioral26

    • Target

      AutoSettings/Files/Tools/SetACLx86.exe

    • Size

      443KB

    • MD5

      451ae03d3c92777f09840ca56f08ab62

    • SHA1

      328d049da1814cfe7d1c7783691304577854482f

    • SHA256

      d5e779d151772504662e8226eb4107330ffa7a51209eee42b6d5883d99100ba9

    • SHA512

      76772983a5c9c8c703b5e51f8ca9a0d5594121e42afa12adcd2b05753a1f96f97b274cda9b13251e0dca0d31ae6a719b2c509ac581bb34c930ccb00141eb9d42

    • SSDEEP

      12288:MqyRLu5aCWoevfZ1PUxHmA7PGbdOv4c54e08MGHb:M3GeAxHmA7PGsvF54e08MG7

    Score
    1/10
    behavioral27behavioral28

    • Target

      AutoSettings/Files/Tools/ViewMyDisks.ps1

    • Size

      3KB

    • MD5

      3b81e3c5e23b7c2a24f6a4e938af78ab

    • SHA1

      3330f35cfb49fc53426e21dd26d35488fd25c4e1

    • SHA256

      b7e9b7e96781ec848b396c60e21ebe7f8d27a69e62ffff179fceeadcd0096ee5

    • SHA512

      96853b807d6d971f0e327257951d0773a7f3beb5f43b820d31cac419dad02eb08d941067b10664e7d9cf36346a734457f64bc35538357a9438b02733debfa3c0

    Score
    1/10
    behavioral29behavioral30

    • Target

      AutoSettings/Files/Tools/cecho.exe

    • Size

      25KB

    • MD5

      e783bc59d0ed6cfbd8891f94ae23d1b3

    • SHA1

      47fe9045da4b1be2a52d80c0b3cf790e04d29108

    • SHA256

      5c1211559dda10592cfedd57681f18f4a702410816d36eda95aee6c74e3c6a47

    • SHA512

      d09fc6574359a5df8885b035a8d05c4743d58f56fee3ffc2cc4fd7c3beec93c8994cd1f296b99a2f0f17b13ec7b03415912f49e13f5d1541839878f6bc498020

    • SSDEEP

      384:KwoPn3OgrkyDyjNKA7DY+kRKzRq92/A2Yo8SKwRS0JSqRdmMOOI1Kz+ge+u0GgfT:tofFhw9NkRKFqIA4Q0ndmMI15glZBf

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

upx
Score
10/10

behavioral1

upx
Score
7/10

behavioral2

upx
Score
7/10

behavioral3

upx
Score
7/10

behavioral4

upx
Score
7/10

behavioral5

upx
Score
7/10

behavioral6

upx
Score
7/10

behavioral7

upx
Score
7/10

behavioral8

upx
Score
7/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
3/10

behavioral12

Score
3/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
7/10

behavioral18

Score
7/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
3/10

behavioral22

Score
3/10

behavioral23

upx
Score
7/10

behavioral24

upx
Score
7/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

upx
Score
7/10

behavioral32

upx
Score
7/10