Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

a31944ff5c...a1.exe

windows7-x64

7

a31944ff5c...a1.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$TEMPLATES...at.exe

windows7-x64

1

$TEMPLATES...at.exe

windows10-2004-x64

1

$TEMPLATES...cs.dll

windows7-x64

1

$TEMPLATES...cs.dll

windows10-2004-x64

1

KKJDock.exe

windows7-x64

3

KKJDock.exe

windows10-2004-x64

3

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a31944ff5c7531ecddbf45ac0d864ea1

  • Size

    925KB

  • Sample

    240225-g5g2yadf98

  • MD5

    a31944ff5c7531ecddbf45ac0d864ea1

  • SHA1

    6bf457bf7f64a3cf7773f45a29ec97b2b39560ed

  • SHA256

    24d824fb3eacf87429dfc236d3c491dfaa13ed412c4aae09de1aea967f3191e7

  • SHA512

    5e099ea7b9d03d5e2ccb75bb7af5d3c4e86b85b5b65b0c050e076d4f3796f72505c15ff2224aaca4bd2295276db3b0c1a80d8ce5f66670828b7b867de1df49ef

  • SSDEEP

    24576:yL0zpn6rCMmbaD1VDd0vqdHsLS23i0iDHvJR7wGGg:bzppbMfdHwrkDHvJV

Score
7/10

Malware Config

Targets

    • Target

      a31944ff5c7531ecddbf45ac0d864ea1

    • Size

      925KB

    • MD5

      a31944ff5c7531ecddbf45ac0d864ea1

    • SHA1

      6bf457bf7f64a3cf7773f45a29ec97b2b39560ed

    • SHA256

      24d824fb3eacf87429dfc236d3c491dfaa13ed412c4aae09de1aea967f3191e7

    • SHA512

      5e099ea7b9d03d5e2ccb75bb7af5d3c4e86b85b5b65b0c050e076d4f3796f72505c15ff2224aaca4bd2295276db3b0c1a80d8ce5f66670828b7b867de1df49ef

    • SSDEEP

      24576:yL0zpn6rCMmbaD1VDd0vqdHsLS23i0iDHvJR7wGGg:bzppbMfdHwrkDHvJV

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      0dc0cc7a6d9db685bf05a7e5f3ea4781

    • SHA1

      5d8b6268eeec9d8d904bc9d988a4b588b392213f

    • SHA256

      8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c

    • SHA512

      814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0

    • SSDEEP

      192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      00a0194c20ee912257df53bfe258ee4a

    • SHA1

      d7b4e319bc5119024690dc8230b9cc919b1b86b2

    • SHA256

      dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3

    • SHA512

      3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral5behavioral6

    • Target

      $TEMPLATES/installstat.exe

    • Size

      44KB

    • MD5

      7c30927884213f4fe91bbe90b591b762

    • SHA1

      65693828963f6b6a5cbea4c9e595e06f85490f6f

    • SHA256

      9032757cabb19a10e97e158810f885a015f3dcd5ba3da44c795d999ea90f8994

    • SHA512

      8aadb5fd3750ab0c036c7b8d2c775e42688265b00fe75b43a6addaefc7ee20d9fa3f074dd7943570c8519943011eda08216e90551b6d6a782b9ed5ce20aa6bab

    • SSDEEP

      384:H+HHi0nKwn0RDbwemPK7BywsgtDgHJR0bA6VWqaCL6VuhV5bIle+vEv5aY3uBRgl:en1nKwn0ZFmKApg7AqaCL6Y16Ha5/uO

    Score
    1/10
    behavioral7behavioral8

    • Target

      $TEMPLATES/statistics.dll

    • Size

      528KB

    • MD5

      d96eb3c463e3d79bde702cabb882d2e3

    • SHA1

      952c4a91492478d6e99dc18557f02873df400a69

    • SHA256

      59fa6395e5752ce5fa4d077b0174c05ffd53607b0dde03e041ff8c2a746c86b0

    • SHA512

      ebe922743a26dac2c8058a77dc7805006917fa2f95b83f257b2b3d734e1d346f7d3ad460fee02d39c2399dbe2ec26b4bd20f8ccf7858f0feeb8a43c6cc5d62df

    • SSDEEP

      6144:00KrP3aHbaBGCUiSG1IMo9G3mMDlKyoGMojHgDpokrJvgEwId4bF1sdJJT:00KDq7s/9S8zygbgDpoyJvddh

    Score
    1/10
    behavioral10behavioral9

    • Target

      KKJDock.exe

    • Size

      430KB

    • MD5

      6791021b5dd067d129d042d782d68cc3

    • SHA1

      f2a3fe15b3f6a422623ffda6ba93bd6025e33657

    • SHA256

      78bfbda674558acf28a13f3332f723ca0e80b1941a0a7fcf84a2f75f9e1fc4e3

    • SHA512

      d01a75a782350299429d02c0c3eb89c39ad9cce39d28e24cf9fdac663e409c3d77cd8a3be78f00e2bd0698956d904c2b99df19e602529d725eef12668930a587

    • SSDEEP

      12288:6kYiPkjvazPGlHZnh6nCWZ3teMT6+DzgN:VYvaa5q3EiG

    Score
    3/10
    behavioral11behavioral12

    • Target

      uninst.exe

    • Size

      38KB

    • MD5

      0e63a9277a56a8561a75342dd051d7d0

    • SHA1

      bc0a5ade3b8a6484058a9f6b5686b96f86396658

    • SHA256

      843c80a07e3cda86fb6e772cbf6ed28fe5e9bac4fa4eb305ecae08bf4e1e2fb1

    • SHA512

      aa90d7b2eff6426cf923cc2ad025e3cb48ab64398d003288d03718bf12496de575897ab8a3e91f93ecb2706a9c474d5181232448739d33950e984a576c07bbf5

    • SSDEEP

      768:qPH4rKS4GDkQBZ3ImWlTtEIRlJ+qFZ2bSgJzANqM3wJJNnRvOXv+:qf4exGDkeZ4mOoSgJEAJJho2

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks