Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

app_links_plugin.dll

windows10-1703-x64

1

data/app.so

windows10-1703-x64

3

data/flutt...ll.bat

windows10-1703-x64

1

data/flutt...er.exe

windows10-1703-x64

1

data/flutt...ip.exe

windows10-1703-x64

1

data/flutt...op.bat

windows10-1703-x64

1

data/flutt...ar.exe

windows10-1703-x64

3

data/flutt...lt.dll

windows10-1703-x64

1

data/flutt...le.dll

windows10-1703-x64

1

data/flutt...ak.dll

windows10-1703-x64

1

data/flutt...ot.dll

windows10-1703-x64

1

data/flutt...er.exe

windows10-1703-x64

1

data/flutt...ll.bat

windows10-1703-x64

1

data/flutt...ch.exe

windows10-1703-x64

1

data/flutt...at.bat

windows10-1703-x64

1

flutter_ac...in.dll

windows10-1703-x64

1

flutter_windows.dll

windows10-1703-x64

1

reboot_launcher.exe

windows10-1703-x64

1

screen_ret...in.dll

windows10-1703-x64

1

system_the...in.dll

windows10-1703-x64

1

url_launch...in.dll

windows10-1703-x64

1

window_man...in.dll

windows10-1703-x64

1

windows_ta...in.dll

windows10-1703-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Release.zip

  • Size

    68.8MB

  • Sample

    240221-svwccshh5w

  • MD5

    41784384ceaa248ba66b7bb50e55cf78

  • SHA1

    73873da934f689496fae1a1e5a5d42b34c420cd5

  • SHA256

    9f4189a5317da63ebdd502c9a26f9f4f7661d4354f83c3be36e60a33fa93a067

  • SHA512

    6d76f169778bdf313dbae5edc1cdce200074dfe5302ceb053f7fb74e16585717167256f7fdb75befc837709d44e77adb010aca3608a48ac2fcf6c510697ff2a7

  • SSDEEP

    1572864:AWmxRkr+CcqDLNc4qBClXr+CcqDLblq4q1WuyAWAq0l8gep32FS:rmfOv/Nc4R7v/b84w/eAq0l8gep3gS

Score
3/10

Malware Config

Targets

    • Target

      app_links_plugin.dll

    • Size

      87KB

    • MD5

      8fa91c004ae5414cbdd5d584106c2939

    • SHA1

      06547274ce0cded0ff8b805812b1679f1616f0a3

    • SHA256

      229d9d7b53875da0f6fe402113bf34055857d54bcd36b6dd5864445356dba33a

    • SHA512

      bb2b834384a0e9ef7ef69dee437179315ef5b252aa3edf1191281ebeeb4fd479303a98501693bef9a97abd623680f86e7178ba09d187d9e077fdafa1fed7b7e8

    • SSDEEP

      1536:MhWLkQU9Dk6zksA7HOPjxyXWDMILsy5pZejCLPt9K2:+WLsTkbelKWDVLn5pZejCLPt

    Score
    1/10
    behavioral1

    • Target

      data/app.so

    • Size

      10.1MB

    • MD5

      502db7aa1096bdad5fff5c599e7ba3f5

    • SHA1

      0c6f3b86b954dced13ae50d3cc7b4c4ebefb747e

    • SHA256

      636e93a4db5869f8df746914c5dfebc211bc1d8781ac56bcb17c252ab8fbe8fd

    • SHA512

      e3b1efdb95aa215f90bcc35371f36056dbbb2114e2fa470db1c4f20d74fc3d31e947090f2a60958657514fda7728539db38196e71bd2d0549fb777493eded4e9

    • SSDEEP

      49152:6BswYwkPwGS0ROlYVH9V2dRO+1GyFDNfZozGigSe7By6LtdMJKwggkxItIac1Op9:VXNwmRNLnyhVJINiJPn3m

    Score
    3/10
    behavioral2

    • Target

      data/flutter_assets/assets/authenticator/kill.bat

    • Size

      81B

    • MD5

      b7a3b24f3ce07dc191d6a303e09fe771

    • SHA1

      2a0a17251694b421a0fb2e012a428031a0cf4252

    • SHA256

      29db72f16513fc90e93dee9613c9ff65d43c0fb85c86b6ba4dc6a4baca897a4c

    • SHA512

      ed5fed9700b62de8fdeeb2463b39448355f0df8b913eadfd1176e64485b2ede5c9fe23bbd5cf948fb7bbfa1f903b4c66b6977f2a49d4ded69e5c2ec65aeec189

    Score
    1/10
    behavioral3

    • Target

      data/flutter_assets/assets/authenticator/lawinserver.exe

    • Size

      55.1MB

    • MD5

      4f58585605e69a9c64057c48c7a29da3

    • SHA1

      2ddaadcdfbd86cd24ec90d77af3bd5e944b5737f

    • SHA256

      a2e90c1992f9357620c4a6d2a87b210f1150c88fe074247e1cf1cfac4b35b61d

    • SHA512

      83271d5f820ef1fe573f6b7f17f28d6e0761f35dc3f5e901ba8e43c5533adde1044c3e88206f9700409316e706c2513f2566321d8c9b89c8cc9499180d9eba4b

    • SSDEEP

      393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYf7:fMguj8Q4VfviqFTrY3

    Score
    1/10
    behavioral4

    • Target

      data/flutter_assets/assets/build/7zip.exe

    • Size

      1.2MB

    • MD5

      1a7eaa1dab7867e15d7800ae0b5af5e3

    • SHA1

      9e6d344bd8724aa1862f4254d8c42b7cc929a797

    • SHA256

      356bea8b6e9eb84dfa0dd8674e7c03428c641a47789df605c5bea0730de4aed2

    • SHA512

      a12373ec7ec4bac3421363f70cc593f4334b4bb5a5c917e050a45090220fab002c36ba8b03be81159fd70955b4680146c9469e44ddf75a901465d6b1231ee6cd

    • SSDEEP

      12288:GJwq/ZGV1wl40xgxBcOocKjdpmPK+Jhd45q+WYWFuzZj9IbcaoFyQraz74JGMWvK:Q2y5uwhDm45qn47IbMFyxz0JD8UvQY

    Score
    1/10
    behavioral5

    • Target

      data/flutter_assets/assets/build/stop.bat

    • Size

      51B

    • MD5

      436d2761b340d602ecea89246c1f304b

    • SHA1

      0ea7cde3ed0000cf0a23c63065b05cd41b4630bc

    • SHA256

      ce49ee1e5e182a6ee94585a9957928470cd22ec66847df96daa2c7dea3f94753

    • SHA512

      71f676f597d0426ab668441744c59f1e07eb25466157cc9be20d28c4eed01e9037144ad2a2e4f74182158fb07be3c1fb0dcd3138e801b00be8cd9bb8e5325148

    Score
    1/10
    behavioral6

    • Target

      data/flutter_assets/assets/build/winrar.exe

    • Size

      612KB

    • MD5

      282f2abe0429b978c55f972171dfbc17

    • SHA1

      02f8c0841d3fb9a4d13c8d0b8266b23949c0b8f1

    • SHA256

      7a06b0227ad51454a72ea6e34347ecc8a61d4fb9c9fd15040a97f1ddebc4be81

    • SHA512

      ecee57057f961b219093bf3f2d212bd911538b26cada1ce89b3882198f04d5d8b8dfb9067ab934902b432d2ff436e88b537075e7e2bb95d5956bb7f9bb23a9ca

    • SSDEEP

      12288:NpNEMz5MmkbJJ4kSFDgGiaO7Y2Ky6sTr8T90oDuXyIBgVB:9EMymkbJ2PoarBsTr8TaiIBgVB

    Score
    3/10
    behavioral7

    • Target

      data/flutter_assets/assets/dlls/cobalt.dll

    • Size

      57KB

    • MD5

      6fe8f07c3e195ac1c2f555c3e03c3f17

    • SHA1

      6fc19f75edc78c114b341b02a34669b7b11885cb

    • SHA256

      004e13e13d13f9b34936031e9b6cb082664580ec5a6b1f8aca0ea41c43daa6aa

    • SHA512

      cf15d27a9d0585e46f9a22cb63c0019bc6bc1ae75c108f72c288476c28740ff12349eeca20cdc2570484055a4c5aa0eccccd2eef4d5625073b9423ca165d18e6

    • SSDEEP

      768:tSRvs2XC/MGDIyBej8MLFKwYqmopG1L3PKmIxo3eG1Q1EFWu0:Ut74S8MLFLqoaL3PKmIxGBQ1

    Score
    1/10
    behavioral8

    • Target

      data/flutter_assets/assets/dlls/console.dll

    • Size

      319KB

    • MD5

      2c44e84fb12c810dc0957255a24b4021

    • SHA1

      758b92e52d0a64b48ca832bdc05e14382a1a8892

    • SHA256

      a4873bd206a1bbf05eea868d28f4850942fed8eb55a465ecc05604c5bc9c43c7

    • SHA512

      a55082feca334d5cf3d9d922f8bf0bce305ab37f2dd2b2f93d254cdca8e1d2180a47355580ff3ab8eaef207483a0309f96db04baf287c5eb5e19f682530e1d94

    • SSDEEP

      6144:2/ytJ6WYV8cnPph0lhSMXlBXBWniWg4KAnQ:DLzcPph0lhSMXliiWrK

    Score
    1/10
    behavioral9

    • Target

      data/flutter_assets/assets/dlls/memoryleak.dll

    • Size

      13KB

    • MD5

      f41a402cb4bfa9db9c23758314d782b1

    • SHA1

      3dd78fe11b2928fa692e14268467fd951a440632

    • SHA256

      09678b68e73eeb4463e3b442e0982eba7ff08b07df0614b12a02ed4c9f17fb7a

    • SHA512

      57464ea0d3a04e013518354bf83509e30ad31ef6988dc73ba1977caf893a98149ed497fc481b5efabf295e8632b9b588edcba0004205d01ee5670db8f8fc188a

    • SSDEEP

      192:e7EY6GsP9AQz/y9cH4IdEByc76AnPAsAV2xDKJ8P:e4Y6GXQz/y9e2ocXHcc

    Score
    1/10
    behavioral10

    • Target

      data/flutter_assets/assets/dlls/reboot.dll

    • Size

      2.3MB

    • MD5

      fa5609f36bc3fc02ddac994f5756f039

    • SHA1

      02186dc26562ed3558f0f7e7b4b77aecf3a93219

    • SHA256

      6c8b2d238fd8b62ad29fbd8dcf173953bedbdb2c54af554333b4ebaafc3631fb

    • SHA512

      87c3789326a5ff6924843c31ae27c4b6e01389d874c54bd4d3cd55ce1c303ea067582462dc925520e2d7a85cdf8eeed4fac1e8a7d4a95abc18673bacdab3c30d

    • SSDEEP

      49152:kxn7xXTlWCQ5Ky40LKG6mCkZw1Z+Qz1HZTK8pvFxOE7UT0inC5:kg5JF6zz1HZTlz7

    Score
    1/10
    behavioral11

    • Target

      data/flutter_assets/assets/matchmaker/fortmatchmaker.exe

    • Size

      36.1MB

    • MD5

      7cfec399492444cdc410c6daa3953616

    • SHA1

      dad0f30f241af899644d404bc34cfcab14205019

    • SHA256

      ec77ed90dccbb53b403bd436af26b248f6ffb87506cef787c317a7d20f409053

    • SHA512

      104d31ce082d24c1732250134507d08029dbe61e9654131246288dba2cbbbbc299562a57c18feaf2271f8d0809187a9c0bbc24b0f27417d0ea180c600289cd6e

    • SSDEEP

      393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYf5:fMguj8Q4VfvJqFTrYq

    Score
    1/10
    behavioral12

    • Target

      data/flutter_assets/assets/matchmaker/kill.bat

    • Size

      81B

    • MD5

      01e59733fd15aa3f749ed9f269898aff

    • SHA1

      63d7c68d9e1335d452b9d72329c8ad146762df96

    • SHA256

      4c6e68ed54e514fd61a334c3c03b2eedcc840aa0d861aafe8b3cd8de63079568

    • SHA512

      c32ed6d3818c57cf956d94084eb8397dee3baccc0321e789d0b77f1cd3a214e4458bee6ba408a52cddcb678ece5c8ab69c62a391f8d388edefc60e0fd39fdf90

    Score
    1/10
    behavioral13

    • Target

      data/flutter_assets/assets/misc/watch.exe

    • Size

      6.1MB

    • MD5

      ddfce33667376926e2a6992ffd5a1c8e

    • SHA1

      0e8eb051b737ca10c3712bb3e63f1f3d252cb307

    • SHA256

      45dd4c3c270ba7a43cabe70417c8d14535e694dd0c7eb4252e77d33da84501c1

    • SHA512

      dd20fbbe2989398ccd836ee984042a792a6e3beda93dcc25792c9ba5430e2845ee3125aa0872d635bbd742f92707c7e8310689b06b2029842d65f1170eefe833

    • SSDEEP

      98304:RKCOtSiarDe3JbFNEoBg5Qp407/N9OeixEuedFRKD7:0CORa6bNESID

    Score
    1/10
    behavioral14

    • Target

      data/flutter_assets/assets/misc/winnat.bat

    • Size

      33B

    • MD5

      a848640501c560e6134ae17fd2fdc2f0

    • SHA1

      6cdf7b5ce48f4e4bd4730a3128ba5789b4bdb430

    • SHA256

      668c2458ff69ad921d6d67d0a7f2c31c3ab90273a54254f06956187450f665e6

    • SHA512

      c16600e0e1fb14b6dc781424c85be82e740cb2999c5214cf0a2ae70dbd6268c664657815f764cc8a3978591b39f0a71473f9a547bdb51f39ec5b5f8e4d13a3a7

    Score
    1/10
    behavioral15

    • Target

      flutter_acrylic_plugin.dll

    • Size

      73KB

    • MD5

      2348bde72d205d3969483ad3d722e08a

    • SHA1

      0c1006869db1ac772e6f94234b3f618ee41cd667

    • SHA256

      c23076dfc17f156369e263c9694cfe0eb53d133d4be518f5216c652e1b2b56cd

    • SHA512

      b066a16d62e8db272b95067e7589bb4e0a05250dd47c81be67239275c907d8f1fba74a2bebb39dde82320c65534a3bb5e6847cff4618ab3b816201f1e538420f

    • SSDEEP

      1536:bBYdgMk3kuAwOwxkSv5Egd66C9IVPs+FffL:bBGhEkbgkSv5ld66C9IFf

    Score
    1/10
    behavioral16

    • Target

      flutter_windows.dll

    • Size

      17.0MB

    • MD5

      26ec5dfd45a51eff4d483c5bd1a34a63

    • SHA1

      30391286aa08d414d0ffe4a3d58a7452334199e4

    • SHA256

      f8a45591216c66cf6bd897110610c386ebacf7aff286a5f5e3e02ddccea73597

    • SHA512

      0cd886d89463310b134d8258a5750c64c8b311ce6f22197c72f41c387b3d2bacceb0de8b33f7c7e692cd7948f0cca756609f44d6a956823f2b5a1f226590b762

    • SSDEEP

      98304:uu8L+/2/FmAh1ij4wHaI79qHKanQf6exi4CgAVp9nHqttXkHAN21gsOMasOIfyq:uJ+8meA9JG4Cnpri2GsEsOEyq

    Score
    1/10
    behavioral17

    • Target

      reboot_launcher.exe

    • Size

      131KB

    • MD5

      6373a1b24e3af14a45554ce84b1734a7

    • SHA1

      7ae5157e92347678f1dfc8d96fb8fa9256e89dfa

    • SHA256

      9e737764c3f68841c331d5c28e6983df13e39fdec87076f30440e06d404086bb

    • SHA512

      102c822f0701b61c87d7867256c47b966f7034d22b336b74dc399d4941f48712292450d62fb2603a139149b17a7fdf1505e01dd18ff3a3b032576b3f1f7417df

    • SSDEEP

      3072:ypXW1kEx32ODnjbqV3dhK6d6hyg5rgzgMjkExRKmkN3xI7T4++2PwE:yNCkinDnEdhK6d6hyg5rgzgMjkKW3w4m

    Score
    1/10
    behavioral18

    • Target

      screen_retriever_plugin.dll

    • Size

      96KB

    • MD5

      118e728e7166aa0889a84512c16ae46b

    • SHA1

      1b2a23b45ef749a56fa810bd447e0ae0a1125a3a

    • SHA256

      77ea7a241ec44a2ad32ec6a856eaedbb298901a19802a3d9100dc9ce3cf50b0b

    • SHA512

      e8065f615c39a24476fefa490510c0c25203d406879fdf298b5b08d6f68ce84248ea98122d844bc4db4dc30f4b920eac4c46d65972a0777c4bbb3f37fca1ea92

    • SSDEEP

      1536:r73O2OSOa8v6IA3Ckrun6kYNBASnx12qptVW259UCjXqrrE10B:9On/eyv6k21HtVW259UCjXqH

    Score
    1/10
    behavioral19

    • Target

      system_theme_plugin.dll

    • Size

      95KB

    • MD5

      219fdf4d4c7abf54b5f9ab841029b44b

    • SHA1

      6ccca5de18ec000a96c1970b5ecadcb0444d846b

    • SHA256

      01cfff2b828c4d9b0b158326af7eb4c5461fa7308821b64c22f0ac5e89f4f3ac

    • SHA512

      d0179730103748e72a64e8f092c735f33f8a8cbcc3b2a16f0303540b16250097a8475d0d61a099b77c59dc4e85944994910d3a5a328fc3566c7cc0d20e46bd7d

    • SSDEEP

      1536:5Z4i5QjYkpzZkUtITx7x0JTyRtCAJBARODRJ5pZfnChbj2K:gi5bCZklz0dyRoAnARODRJ5pZfnChbjb

    Score
    1/10
    behavioral20

    • Target

      url_launcher_windows_plugin.dll

    • Size

      82KB

    • MD5

      a1f72df0a9905611df6b499143832fd8

    • SHA1

      b998443cb7cfd576ece7a4bb0425ee0eb1ff6962

    • SHA256

      03ca1ce16e8246b6a293eed57f366cb4378a54c3c14a2464e12786bd6cc43917

    • SHA512

      145950901c1a8cdd8e24ee473b47b77e2b18dafdcda6c1200e24f5b2b4597c968e92b895a25e3b63c52b12662163e4ef84bb2b72c6c21776eeaa7196d0380bb6

    • SSDEEP

      1536:DQHdH74IM4r7xgfQkjLAT+DCImpWG16Bal5ruVOg3qx2GqM:sZvgfQk3AKNmpWG16Bal5ruVOg3qVV

    Score
    1/10
    behavioral21

    • Target

      window_manager_plugin.dll

    • Size

      128KB

    • MD5

      aed074313dc1e7edc0113c845e689b92

    • SHA1

      469d6917952f13e403f4d01d7ee978bbab92f61f

    • SHA256

      4b44c1f6f7702e25ac7fe9362677f0523ad642ea07edb58c0c391fb842125d22

    • SHA512

      be65fe4d9ad990aeaaffe216087c99d6d1fc23bf219b7674a0371c75473e1f3b083adf17ebe3a41b41bf786bdeca6d9b55b450c760fb1e77903f5a3f64884bd3

    • SSDEEP

      3072:yitPIlaCy0iVvkAHz1FZfn2Wr9RamddpZf5CLSE:yitglaZLvkwp2ORamddpZf5CLSE

    Score
    1/10
    behavioral22

    • Target

      windows_taskbar_plugin.dll

    • Size

      90KB

    • MD5

      223155cfb479274eb59c699703c2b980

    • SHA1

      61c400115ca550bf59876be4ac23fb193a0dc24e

    • SHA256

      e30bad955a7fca3f71c9bbab0856455747553294eb7e0e2272bed198e07d95e8

    • SHA512

      01a3b60af207b12519e3c8ff50293394f17cf0dcf53bfece731e590c2ab38962513f54b1db8d0b0f663cc26928e3998afccd881a2992342c641f5d1e920c50cd

    • SSDEEP

      1536:HSqFMOyawkkKk6vRptwOxmVj9syDiGXHu6sodpZfSNCz4QUAC8Ku:Hdyv3Kkol6YGXHuedpZfSNCz4Q

    Score
    1/10
    behavioral23

MITRE ATT&CK Enterprise v15

Tasks