Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    75670e481e60bd7530690255872bd50f

  • Size

    1.6MB

  • Sample

    240125-yv9smsfcep

  • MD5

    75670e481e60bd7530690255872bd50f

  • SHA1

    25250cbcfac875797fc0ecefb8ad1aa0793a6339

  • SHA256

    a07062cb5e0bc9f8f7250ba9f1b1e81641c96b74659af89da2da28b983a8cef4

  • SHA512

    91c72314bf087bce4d55b6a061a28ff19e6e8b1508eefe6b772e7172e0d78fbf807b57d6bc4572ca1473353f3262d96b33ace1455f58b5daa862684ced289fb6

  • SSDEEP

    49152:Zg/gf7i5ra5M/LMJYlZpCVS8XJ9HLln3+19HyWaZDvXHYhuMiQ:ZBTi5raCAY7gVS6J9HLN3E9HyjLCP

Score
7/10
upx

Malware Config

Targets

    • Target

      XMTS20090628/Sys.Dll

    • Size

      292B

    • MD5

      b73030c0339cd7abcab2df5d57e8804f

    • SHA1

      b8f63cec11e64649dc75c47a4bafc6fc3b3863fd

    • SHA256

      54623435666afdaf76cd6ba0b6f5f9fdbc9459036918d5a6e2fd5d6fae35c7e8

    • SHA512

      3692323d6d94a7e5e088d0e194275165eed6c069fd9bfd964144e7ae7da89ab3b9288900aec20db59011fe8d3f84df28f95163afac7a762dbef6366fdbbc5358

    Score
    1/10
    • Target

      XMTS20090628/Tools.dll

    • Size

      25KB

    • MD5

      456fedb95b2fc1c1074e06f0217ba5a6

    • SHA1

      cec2c0872771e6d8b12850d61d4eddbf6017d8bc

    • SHA256

      f20a1b7c36001a1cc8f3b15053342ba9378bdc583ca251f162de276c5f63e8f3

    • SHA512

      1785272321fafa61ffeed4f02473d941f36bd6fcf42f7a80e31e316ba1b8523ac49b020b6fd832380b4043cb30852bd326b0e23ed7a9a49b3fd15e4cefaa0c30

    • SSDEEP

      384:kBIq38cQzR9Fcs++31jHQi7TynpJB5nwekOltwnt2eK78/DXwBHz9G8tKER8e9t:kBh38cQvF5pHPypBdD/yDXwnxJ/9t

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/XiaMiTimeSys.exe

    • Size

      741KB

    • MD5

      ed1f0b9f2b2cba3aa0c9f08fdf6594ba

    • SHA1

      f94da61c686292aa6050b144e23d67582f7e32a2

    • SHA256

      6e111ca3797db758be47882f3ba66600f879aa2075b8aadb7c4a606104df9594

    • SHA512

      ce6152884168acb4d5a0789523957b699680d95e00be37ac59e52f33882b3ae2affdbda3cae5e59ab4233848716945fea884aac87f410dd3bfe982ae045cd20d

    • SSDEEP

      12288:bho6WWPmQro6IqH/PJdcCs6CMKlA1oBkUACorLiWOO4JUWaB0whzAJNakHFn3F9d:FXlhro6Ii/hd4MEhR4OH6hzAJNa2V3b

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/新云软件.url

    • Size

      133B

    • MD5

      4f0017b3b346bd0626f0c3b915e6e734

    • SHA1

      823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92

    • SHA256

      df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678

    • SHA512

      0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6

    Score
    1/10
    • Target

      XMTS20090628/程序功能/CHJ001.dll

    • Size

      11KB

    • MD5

      8890d91272b200bd846d98878e2f5182

    • SHA1

      24605ba34de5a338d62e9db777c8f8a19c770552

    • SHA256

      cbd84db1e496c241758dba64faf98348bf47fac0db3b5335cb504f28193aee91

    • SHA512

      ef2699b4f698aa764d3e2a1c313989f17f777195a80cf099cc94605749d12a210d7a81962091240c1048d49014a9f50fb97cfa54256b1d0657fa5312a358862a

    • SSDEEP

      192:nqSZ+KWnza66GggaT6V/uxGQ1XN/CP5zFm1ou/MA:RZ+nzrs2V/ud1dKP5zFm1oCM

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ002.dll

    • Size

      220KB

    • MD5

      9fdec337d2dc55751f38d817abf6c3c9

    • SHA1

      57501f467a66e425893af479325af6de9c851578

    • SHA256

      2903067697dcfd6b63bbba7c81b21741770e73a61e858829cc282ee576722a26

    • SHA512

      e77d808b6787c83c7eef0057c619a1001969be307055cc67368377bc2219009054bbc1d769870ba635948f2626d0ef7a6a486dd06e57afab25fcf5cd60b36e33

    • SSDEEP

      6144:fSJbfY8DSPkoJmz86nxGEcvscF6TnEgur4U:fSJbJDScWmz868Ecvs//U

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ003.dll

    • Size

      11KB

    • MD5

      be2acb07cc5b1afe39712141e3ff10ce

    • SHA1

      ad174f56141ecf58ea71e14ad51df4c2fab43e30

    • SHA256

      ad717447415495d64f1ff9e917e9a223ee7931bc0ea249e9c0cf05344a134e92

    • SHA512

      2bd2cad7d89919e2c7a8e98f9509a72420930a4610c96b02723c2d87b36326b7d9000dd78241a33e1e2f2dc2691ad34381c615f57d86a8057f7a49f27446bb3d

    • SSDEEP

      192:nHvqijC1qAnS530DlB2huL5zVyunkQRePTlttzNyZQxm:PbjwqAnzlouL5zVyukMoPz+QM

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ004.dll

    • Size

      261KB

    • MD5

      25904b2f93967b0712fe35a3ffc62431

    • SHA1

      1a44abe6dd502a46880b08c088acd6553376e447

    • SHA256

      1a0201ca39e7e0980d942e7d3cecf8a4d9a830f619e9745a3fc0bc3f8d51bbd7

    • SHA512

      3e83da8ae8f80ddc4fdaebfa42198688aebe479ddf0108fa6f68399917c022bb7e0c708db59ebd670e0651d16ad307c93f5b74e220ffc758418b033cc5f2bd68

    • SSDEEP

      6144:17vi3XOHDURmnhC0mvxudlMmrPWMTDPsEr+sv:la3w+czmEDBWM33

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ005.dll

    • Size

      11KB

    • MD5

      cf96cf41747c1370932645c91ae91497

    • SHA1

      c702aea5e2f23269c2d2796c00a8c4df22e762d2

    • SHA256

      94e656ce870fce361a2dda9689cbaf2a060797fb15a594100c690386caa0f9cb

    • SHA512

      b27d4955513df1dc224edb10297de1516e2a59cac1e42936cdcaa4b0a2313ad4611e11340cc57a54dc6262c8ee9956b2c1e41f3fb3ff660dc7a78bba97f972fa

    • SSDEEP

      192:nflThrhKMYrnuu5H2UE8x2AMAPiOYVgpYPmxn4Hhrw84xKbVvbaA:/rhIruu5HkgfMvVYYPmxwh4KJDa

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ006.dll

    • Size

      187KB

    • MD5

      c21b9949e8bd3499c2188ae43cce1ad7

    • SHA1

      3108e38fd6988d96a45d49dfa1c8ecac2478cf01

    • SHA256

      2b952802c039114d51ba67078acb37e8d4ee4e91afc26602aad2db93c5ac23a7

    • SHA512

      3cd26aeed0adedb609532a49ee3e0f22a9dc6e1bc9c08f127356801634d754605292e4bc0bf3dfa87a86c24df714f9057f39a999eda70ee283183e5905663374

    • SSDEEP

      3072:7OZ88571r5o7PUsWp59wFsgvPDfRRoFjRo5hBcep8adjRPmt1CA:7Orjr5qPUjFwFBvPNRoVR+cadjRPm

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ007.dll

    • Size

      11KB

    • MD5

      707b409316f0b24851750bd7bfa01cca

    • SHA1

      49edad504031c2e8279e860f2d58723a4d65cae3

    • SHA256

      272d943a0b6dd4558700490701589fd8c4ea45d2f83932b5ee5a72fe0afdb724

    • SHA512

      082471cfd153ea3150ca2248d7469526388ebd6c5325e23b4068196cc4992def161e79f05a8c4b4943f8e66b41362c8ac201a9c23a15334ce87fde13a0458110

    • SSDEEP

      192:n6nlThrhKMYrnuu5H2UE8x2AMAPiOYVgpYPmxn4Hhrw8q/a/qJ/P7A:crhIruu5HkgfMvVYYPmxwhO/aiV7

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ008.dll

    • Size

      11KB

    • MD5

      f079e9c9a0c3ce7eb6f149fa2d183176

    • SHA1

      65756e0851931a130fd191c2a56b99c13161ec6e

    • SHA256

      7c52af3109e8272360fccfe0914beef957f5f90e593c3ff214122bdcf0b8d75b

    • SHA512

      a1035eb3881ebce626c3574ab421548aebe9487d3d8ec66a21527653e1a5607f49d3ac1b411298fedb8826defedabe621482c2d131053a27c5ae86657d3599db

    • SSDEEP

      192:nvlThrhKMYrnuu5H2UE8x2AMAPiOYVgpYPmxn4Hhrw8CVNDsoKfGA:PrhIruu5HkgfMvVYYPmxwhIFpWG

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ009.dll

    • Size

      179KB

    • MD5

      bc82f26285e6cb7a03cfda34c9f834f6

    • SHA1

      13c9b2bc765fbec5e22786af3ff674df70dacf38

    • SHA256

      914327ad06a80668f8b49dbae21dc5f81651c50ffaab0618ed973a3c35286026

    • SHA512

      29f8e603127e5ef48515d1afe9e31e301664555ac1a41b90a1d2cf895a16cff37e43d4287bb6fd85371bad21ffafb1f43304cdbf3b112ee91248ceb9bb870f5d

    • SSDEEP

      3072:oi1gP+ZpXLdOAyCB8BUjhbHSGqdDrbc6keHHhD7HZMNqjBXFNL9IGWiXr4WomtxR:N+P+ZdZtBZ9jRqdD6eHHhP5MN0B1NC/s

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ010.dll

    • Size

      11KB

    • MD5

      47797e287b035513d9e00c8f6d51537c

    • SHA1

      8d0b568b21a837aafaf9fe0f6a2c7e49335be703

    • SHA256

      74793a2c99e19087fc62d9eda89137abdba7b518a9d86417b1227f81728e9dd6

    • SHA512

      449401b1127dd579b406791265b0279bb65e9964c6d1ce2f8be8d5d6e636c3aec51b54cea55592320fa699b5be794ed0962ae123e393aa83807d1a1b788e7b5f

    • SSDEEP

      192:nIvqijC1qAnS530DlB2huL5zVyunkQRePTlttn0g9/X5gx:8bjwqAnzlouL5zVyukMoP0G/pg

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ012.dll

    • Size

      401KB

    • MD5

      6f337fee89f55a8ebe3cb3ad8ecc1b99

    • SHA1

      4a2ff85ad7cae4276a4fcb6b8c1b09ab4029d432

    • SHA256

      791b83d03b94e34f35050b1d4adceeef381ba33365855f635cabda265f7a6439

    • SHA512

      a51635b8b072cf52ce9ad9df3ed551c1cca8389685eb482f23920f3ed7797d352f1fedbacffa3301f9ede4b6071cd3c5cc6b415431ed798416e5b08c33fa2354

    • SSDEEP

      6144:HuOf4U8sy3lswkm5snLoiZKlOXaayzlFV9irWtTQQvAB69MpVnpQ9v:HfalkKcaai9irWSgG62pvQ

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      XMTS20090628/程序功能/CHJ013.dll

    • Size

      181KB

    • MD5

      99ee172c8c8cd3e599807f1ff8ccf8e2

    • SHA1

      81a8f6f9c1af048d1d2fbef587a57fb07e41947d

    • SHA256

      7beaed15832fe705872da1a3b200a967cf1d8ea7ddb59e64469110de9f2d3e63

    • SHA512

      d2830851eb85bf8628228b4cb55e6bd3a50310e21fcf2c0bf24f760e094dfaf1efe343781996895350170b53455794df84a726ff877bc841c1c5cc2a8b70e84e

    • SSDEEP

      3072:KDyarutgQtt+3RAinbFxCX7uMxjYr4eZebGRUqpTNgb4hkHs8w9oz2mubVhaYGe:FkYr0hAabDG7uSjAebuUqpTNgshKZwC2

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks

static1

upx
Score
7/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

upx
Score
7/10

behavioral4

upx
Score
7/10

behavioral5

upx
Score
7/10

behavioral6

upx
Score
7/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

upx
Score
7/10

behavioral10

upx
Score
7/10

behavioral11

upx
Score
7/10

behavioral12

upx
Score
7/10

behavioral13

Score
1/10

behavioral14

upx
Score
7/10

behavioral15

upx
Score
7/10

behavioral16

upx
Score
7/10

behavioral17

Score
1/10

behavioral18

upx
Score
7/10

behavioral19

Score
1/10

behavioral20

upx
Score
7/10

behavioral21

Score
1/10

behavioral22

upx
Score
7/10

behavioral23

upx
Score
7/10

behavioral24

upx
Score
7/10

behavioral25

upx
Score
7/10

behavioral26

upx
Score
7/10

behavioral27

Score
1/10

behavioral28

upx
Score
7/10

behavioral29

upx
Score
7/10

behavioral30

upx
Score
7/10

behavioral31

upx
Score
7/10

behavioral32

upx
Score
7/10