Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Keymaker/Keymaker.exe

windows7-x64

1

Keymaker/Keymaker.exe

windows10-2004-x64

3

Patch/Docu...ro.exe

windows7-x64

1

Patch/Docu...ro.exe

windows10-2004-x64

1

documentsr...up.exe

windows7-x64

7

documentsr...up.exe

windows10-2004-x64

7

安装说明.url

windows7-x64

1

安装说明.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    387068f7f7b37ece3b4a4e0b37778468

  • Size

    2.5MB

  • Sample

    231231-qzr5dsedcm

  • MD5

    387068f7f7b37ece3b4a4e0b37778468

  • SHA1

    c5051dc3fc713ad27438ceb7f4825f920f9d8e0d

  • SHA256

    6e1ecfbeb5f7b87342b86bc7f2ca02e556e7aca8041afc1092988ece59fca901

  • SHA512

    b256361baa016408414435603cf1725c5e45e14ce51cff3a7f2fff3718b0bee4e4d09cb5bd17ba740733a64066a387882755c46bac49bb60f4a264b9e0c10842

  • SSDEEP

    49152:i1z4i0/CMv1HaLyF1FXmeCeyYoY4H+VI+USuRWEZd31:Qcik5FHXmuyvHf/HL31

Score
7/10

Malware Config

Targets

    • Target

      Keymaker/Keymaker.exe

    • Size

      180KB

    • MD5

      a9e9c847d66b20649ac1ba65039cf2d0

    • SHA1

      e35a58bda4ac4cd41ad440847f00bcc05a52408e

    • SHA256

      d9320d340f0b76f5084209262655772ee319f4fb223d9f86616c3e429b916102

    • SHA512

      597462877bba60209989bbf3409fe598de9fe04a2f2228db58857f93750aa7fa2dfd59ed71657787c456ced4a844fac7d45246c5144eb39d332b2bc741130351

    • SSDEEP

      3072:Fu6/0X/uiVTNoz4+VgKENlMuzIcEg8Vj/GnraOtkogosV9oJ:s6JiVTCqtTIN7VjsraOtkox

    Score
    3/10
    behavioral1behavioral2

    • Target

      Patch/DocumentsRescuePro.exe

    • Size

      533KB

    • MD5

      4c3bcebd7cd63e3a713adc22dd65e955

    • SHA1

      008a05a7b282a86d33a8500b9899b356a371f0ce

    • SHA256

      17063c64cfdef063880b92a3127cbf0045ddb8e2957d4de8eb7670c0b96b575f

    • SHA512

      17c7c1062b1c35a05a85bb948db7120bb9946b5e4335ec077e012cef557ecabeb9f1e0afacd357e8248d24bfe587ee53d59577289fd38a646f8d2be2709b2e21

    • SSDEEP

      12288:LeHHtg9gNBoDbq7k6Padr1qXk8EmCAWW16kogC:Mtd3Abq7ksaLqXdCAWW16v

    Score
    1/10
    behavioral3behavioral4

    • Target

      documentsrescuepro_setup.exe

    • Size

      1.8MB

    • MD5

      c4ad6e5f6bc31d658532486d63f8af02

    • SHA1

      dc3ad6882abe0d91a04ec93b2c580793c362ab70

    • SHA256

      e8eb3dd5cee306e41f4636651b4e72012bb4d50a0f258d3b82fb1d2ae147315c

    • SHA512

      2bcfa7afe95020cf55519a459a061479b3c2726c3144c178518cab45ef089093bf025976e6cc6d9847787f4dc4ccce3170e7c658d263311800e7402868bc9ae4

    • SSDEEP

      49152:xBj/VHjHesuNLkO9oE1Mr6vfHRrGe51AaK1JFjtvOra:zzpLxqTMrcGecaGFJvr

    Score
    7/10

    • Loads dropped DLL

    behavioral5behavioral6

    • Target

      安装说明.url

    • Size

      260B

    • MD5

      ed83e978f409fcebba2825b084f2c140

    • SHA1

      4548b5565354024dff5f387fa825fce7d11e67fe

    • SHA256

      ac996e7c6b803289cbb4eb6cd62cc7e63dcd456aa18dd7fa88aed066b06218ac

    • SHA512

      2257a6118aac1a6368749357433e037798d1765dee71addb73fa3e98b27335bf7000786a0814d6a5b3a5f63eb25f13e49559da8e192f48dd230d1c344763a377

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks