Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

86dff32b3e...b1.exe

windows7-x64

7

86dff32b3e...b1.exe

windows10-2004-x64

7

$0/uninstall.exe

windows7-x64

7

$0/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$0/zwankysearch.dll

windows7-x64

1

$0/zwankysearch.dll

windows10-2004-x64

1

$0/zwankysearch.exe

windows7-x64

3

$0/zwankysearch.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    86dff32b3e21a5776c9be016bbc070b1

  • Size

    698KB

  • Sample

    240201-ph3zwsfbhn

  • MD5

    86dff32b3e21a5776c9be016bbc070b1

  • SHA1

    d80a3ad913c4c386dbbc2aa4fe2edeb6903747cd

  • SHA256

    0c738afdcc2ec1839c6bb3238f43160afc68cda566786a3aa82545d1a0bc06f1

  • SHA512

    ca6919a1e12f841b7f6ccd5fb172f05ec7588c5d9ca51e63511f78222e919f942af6edb7e3dbb3a797942b1f7407eac3dbaf0e92edaac2a18ac308abcb603ad2

  • SSDEEP

    12288:pcRIX6vUw7DnVuMySoNlfdjtBoye40LIYppleoVNVJqVhRdHi4+htxN3:p1XoZ4Nl1jLoye40kKWVhRhKxN3

Score
7/10

Malware Config

Targets

    • Target

      86dff32b3e21a5776c9be016bbc070b1

    • Size

      698KB

    • MD5

      86dff32b3e21a5776c9be016bbc070b1

    • SHA1

      d80a3ad913c4c386dbbc2aa4fe2edeb6903747cd

    • SHA256

      0c738afdcc2ec1839c6bb3238f43160afc68cda566786a3aa82545d1a0bc06f1

    • SHA512

      ca6919a1e12f841b7f6ccd5fb172f05ec7588c5d9ca51e63511f78222e919f942af6edb7e3dbb3a797942b1f7407eac3dbaf0e92edaac2a18ac308abcb603ad2

    • SSDEEP

      12288:pcRIX6vUw7DnVuMySoNlfdjtBoye40LIYppleoVNVJqVhRdHi4+htxN3:p1XoZ4Nl1jLoye40kKWVhRhKxN3

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $0/uninstall.exe

    • Size

      78KB

    • MD5

      49308a7a6a85f0129a98a288cdab2385

    • SHA1

      33a1b7ca4bc7a27647519cdf015ac0a22782f527

    • SHA256

      000519cce0a165f4a94ab47dc7b666c4df08af1a5e3430987810193c270dc909

    • SHA512

      8ba592a1171f80e1bef7fb398b6c2b91402e6f76ad8942458fcefbff9919249747348bd75fba8d42180ff460469780ea88aa5966cd50d0dbf979a98b44fd1ef8

    • SSDEEP

      1536:PEkjY1zy214Qay0DGkJ7qAELVigJNcpw/1q792sX7Ia12/Db:8kjAJ4dDGkJ+AI0fo1qRka0/v

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      13KB

    • MD5

      d765c492c21689e3d9d61634371fd861

    • SHA1

      ac200933671ae52c9d5544d0e2e8e9144d286c83

    • SHA256

      551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc

    • SHA512

      9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f

    • SSDEEP

      192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      fe24766ba314f620d57d0cf7339103c0

    • SHA1

      8641545f03f03ff07485d6ec4d7b41cbb898c269

    • SHA256

      802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd

    • SHA512

      60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3

    • SSDEEP

      192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB

    Score
    3/10
    behavioral7behavioral8

    • Target

      $0/zwankysearch.dll

    • Size

      576KB

    • MD5

      b2929a0fdc15af98c83993b1288b53a1

    • SHA1

      f4bd8b2fa6721e743e5d15d1123f8c51c41ec1f4

    • SHA256

      4f4fb53c8d6a96054cb77279c6346f025a47c890738a2613db7f0c5c2ffff9c8

    • SHA512

      eee9b5aff0c4a54b1a4fe02d2ebb77ddda64c9e43d28b32b7b0712bce3a35abb6dbdea946b4923e58ba57f78f7b18a0ccdc5d5825123e9f843b333a7e61407b4

    • SSDEEP

      12288:DtvCE0labQk7SqteQgf036xkqB6AbJ0zs7Q5ZEcvcCtH+FvovP3BO:l0lxUSKeZ0656AXWpcCJKYO

    Score
    1/10
    behavioral10behavioral9

    • Target

      $0/zwankysearch.exe

    • Size

      25KB

    • MD5

      9656f2730a3b483ae68853642d63074a

    • SHA1

      ea7608bf4fc7a15039cdfd49a6631fec2af97c91

    • SHA256

      25110ca47f1e659b1fde527204b9204d9210f9b2649cd157fba45027f453910a

    • SHA512

      3feba7b040e5ebf2a0a08ae39dab0194010bde281ca1edab901533154ad48fb34e6929c8c38a7cce701b37ee7222a6fa297954c1db02e07502d295443bea4e15

    • SSDEEP

      768:AZ02ds3deTYI1Xja9DPmjGQcnvRBWoBal0:AC2ds3dvI1XjIDPNQcv3Sl0

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      13KB

    • MD5

      d765c492c21689e3d9d61634371fd861

    • SHA1

      ac200933671ae52c9d5544d0e2e8e9144d286c83

    • SHA256

      551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc

    • SHA512

      9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f

    • SSDEEP

      192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB

    Score
    3/10
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      fe24766ba314f620d57d0cf7339103c0

    • SHA1

      8641545f03f03ff07485d6ec4d7b41cbb898c269

    • SHA256

      802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd

    • SHA512

      60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3

    • SSDEEP

      192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB

    Score
    3/10
    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks