Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

ArmAccess.dll

windows7-x64

1

ArmAccess.dll

windows10-2004-x64

1

AutoCopy.exe

windows7-x64

6

AutoCopy.exe

windows10-2004-x64

1

MSVBVM60.dll

windows7-x64

1

MSVBVM60.dll

windows10-2004-x64

1

diskcopy.dll

windows7-x64

1

diskcopy.dll

windows10-2004-x64

1

飞翔下载.url

windows7-x64

1

飞翔下载.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0aaf3aa3c700e6c9c38f2aec67450f50

  • Size

    892KB

  • Sample

    231230-b9pdxsghc4

  • MD5

    0aaf3aa3c700e6c9c38f2aec67450f50

  • SHA1

    02024794b92f8de1fd324183cf8815b041e2686d

  • SHA256

    8b3c6a051d3d95055e9571c53346a0e262b32d17bbc26de495cffddd7b73528f

  • SHA512

    2aea1b10788910edb50e5c4b1d5fd04804cbd5460fe8410e9fc1cb9bbd225d467874d6bec34ffe34a1819888e074ded4e0acf1946444d9c06bdbf36395598180

  • SSDEEP

    24576:06KHpx9wnVVswJL/gpL2TSviaseFKIcY0eVZI:qH9wnVV/JL/WOSvleNew

Score
6/10
persistence

Malware Config

Targets

    • Target

      ArmAccess.dll

    • Size

      52KB

    • MD5

      c841204b08d5a330f4e0503430f82e24

    • SHA1

      5720d7eba4fdae55a7e67cfe3637cfda02d2e953

    • SHA256

      089869db6efb52ce41dc6f0ab859164c7a316f4ae082cdc45b1ea7921fd42505

    • SHA512

      22542300bc25ea84906c2ec7fd0588a9be67f9c44732f1c9c3ac8f2049a1941f2c746888c5635beb6a00049743cbb322143d698af7d501e9f5fc17738900e9ea

    • SSDEEP

      384:TWNNgJdY59tTulkbETxYpx6y2LfiqoYBUcz837yIYh9JzxovS1f2uUIiho38oqee:SIwTulXtkmfZBe7EtFovs2I38ozSihb

    Score
    1/10
    behavioral1behavioral2

    • Target

      AutoCopy.exe

    • Size

      704KB

    • MD5

      867446c014b56548626e44d7c2cb7e89

    • SHA1

      bdee7a08d7c93b9071420184efbdabfc8847aff1

    • SHA256

      88cd6d1bc5ea4acf490cafdb955e150546b52b22c01ec5d688ec00d3d3f9dbf8

    • SHA512

      a294e166f200a2fa57399aeb6a9688140225ec508d37681d0551242da81b9a7e8e88c7c3a4f297197bf62a8477644434781fc3b34ba3a9f623cd9315b1caadcb

    • SSDEEP

      12288:m31oOINYeyhlcEP7XvoxM9mISbENsfLdNBJC:miNYeyhlcEL2QeNJ

    Score
    6/10
    persistence
    behavioral3behavioral4

    • Target

      MSVBVM60.DLL

    • Size

      1.3MB

    • MD5

      f28eb5cbc3ca6d8c787f09f047d1f9c8

    • SHA1

      70db1fac822974bc9b636a984bcc1da2e67f8de5

    • SHA256

      3ef32e0152cc3fa07c417e6aadf9ead83a17b5fdee73799044e1bd7564725d6e

    • SHA512

      84f811f75e9d5143898728d2109b349802a292d4ef2ccae4b4421d20268a33c6ddee9c70e8bdeb474a3ac70307b2554c00ce786ca1f446807610fa2717f3745f

    • SSDEEP

      24576:jrWIEO0eDfcPOvCOpMEPJonhql5oHS+zh3JajtObuF+T+NUFRjUgIeX40sgdp:jrOuCQhJohq3oHrh3JajtObu2+NUF5Vd

    Score
    1/10
    behavioral5behavioral6

    • Target

      diskcopy.dll

    • Size

      36KB

    • MD5

      17d46b1daebb0db9c0905bc5270ff36b

    • SHA1

      830df71f43ac6d213557592313d980d32d83b5be

    • SHA256

      2f77e94fc834a2fffa1f7f9ebf72a0ef8913b361b1d2abbe85cbe323bfb26c3a

    • SHA512

      adaf390e7b9559058b4e552ebb38c2283e69c5f79c75561aca31476baf9849228cd6a7d83cb16dd89f1bf16999b6c6fd3ba9fa5262e20a2d7d38974f7b60817d

    • SSDEEP

      384:Q0OuGRgTNHhFJRmlMPNynvRyhKHHEoZo94heI3:ouAgTNBxknJhHHdZo92

    Score
    1/10
    behavioral7behavioral8

    • Target

      飞翔下载.url

    • Size

      74B

    • MD5

      6eb0b28e193e1a54c738ea19eb79b47d

    • SHA1

      96916053542c546537c2e415b671f54f5a2072e3

    • SHA256

      f6b67543562e0b53d3e2326746de0fe54d79229cb909b8f818dd16f0f8b32b7f

    • SHA512

      4418a13ce0a2c553699c1eb77ad3da6925fa0d5847d0241a87bfdb8db479051f7c0eff286ada4f34b2079fe67fe22c32dd9df41f1a6494cff0dcf9ad625bb505

    Score
    1/10
    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks