Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

[email protected]!.zip

ubuntu-18.04-amd64

[email protected]!.zip

debian-9-armhf

[email protected]!.zip

debian-9-mips

[email protected]!.zip

debian-9-mipsel

@!Open_Mai...p!.rar

ubuntu-18.04-amd64

@!Open_Mai...p!.rar

debian-9-armhf

@!Open_Mai...p!.rar

debian-9-mips

@!Open_Mai...p!.rar

debian-9-mipsel

SystemApps...ols.js

ubuntu-18.04-amd64

3

SystemApps...ols.js

debian-9-armhf

7

SystemApps...ols.js

debian-9-mips

SystemApps...ols.js

debian-9-mipsel

7

SystemApps...ack.js

ubuntu-18.04-amd64

3

SystemApps...ack.js

debian-9-armhf

6

SystemApps...ack.js

debian-9-mips

7

SystemApps...ack.js

debian-9-mipsel

7

SystemApps...ers.js

ubuntu-18.04-amd64

3

SystemApps...ers.js

debian-9-armhf

7

SystemApps...ers.js

debian-9-mips

7

SystemApps...ers.js

debian-9-mipsel

6

SystemApps...ace.js

ubuntu-18.04-amd64

3

SystemApps...ace.js

debian-9-armhf

7

SystemApps...ace.js

debian-9-mips

7

SystemApps...ace.js

debian-9-mipsel

7

SystemApps...uri.js

ubuntu-18.04-amd64

3

SystemApps...uri.js

debian-9-armhf

6

SystemApps...uri.js

debian-9-mips

7

SystemApps...uri.js

debian-9-mipsel

7

SystemApps...e.html

ubuntu-18.04-amd64

SystemApps...e.html

debian-9-armhf

SystemApps...e.html

debian-9-mips

SystemApps...e.html

debian-9-mipsel

Resubmissions

10/03/2024, 18:59

240310-xm5naaae9v 7

10/03/2024, 18:53

240310-xj4xksae21 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    !@pAssW0rd_4488_$etUp!.zip

  • Size

    50.2MB

  • Sample

    240310-xj4xksae21

  • MD5

    4be8dfc06b5f69f5b9022b002541c476

  • SHA1

    e5af8ff897f249c78f77df94f5ed2dbc8ec0ce5b

  • SHA256

    5a9b6741bb818e8991570e5fe7d0b1a9f412dcb1796b9c05b44a20261539132c

  • SHA512

    d169407af06edf2881b3277a4b895537d9ef10954c45f262e5e7ae8e6a6ef84aed8e5444c2341fac7eb1ccd9b985d443792ba77f6de2187203f30c12b690e80c

  • SSDEEP

    786432:KziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBc:KWOBxenFdhEQZBvUIN9zx9leT4RBc

Score
7/10
antivmlinux

Malware Config

Targets

    • Target

      !@pAssW0rd_4488_$etUp!.zip

    • Size

      50.2MB

    • MD5

      4be8dfc06b5f69f5b9022b002541c476

    • SHA1

      e5af8ff897f249c78f77df94f5ed2dbc8ec0ce5b

    • SHA256

      5a9b6741bb818e8991570e5fe7d0b1a9f412dcb1796b9c05b44a20261539132c

    • SHA512

      d169407af06edf2881b3277a4b895537d9ef10954c45f262e5e7ae8e6a6ef84aed8e5444c2341fac7eb1ccd9b985d443792ba77f6de2187203f30c12b690e80c

    • SSDEEP

      786432:KziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBc:KWOBxenFdhEQZBvUIN9zx9leT4RBc

    Score
    1/10
    behavioral1behavioral2behavioral3behavioral4

    • Target

      @!Open_Main_File#/!@pAssW0rd_4488_$etUp!.rar

    • Size

      50.2MB

    • MD5

      a81cc3bbcd71ca4422c255537b880455

    • SHA1

      494dd42c7b8a83980852fbae9cdfbc9e38c46461

    • SHA256

      725f0ee71e092a041d1584defae08061571e518cda14dafac06645314c8145dc

    • SHA512

      81dfbf85258052e8b4aa34cd5aa186144660f97ff4c5558b1ea1d373766423ddc08f0ab64bc99b45a79c356c0de4dd9ca33e238abf49f8d284d51509bda8acf0

    • SSDEEP

      786432:SziOBxengCBCbdcDD7qi4sqLheZ1Dv4dIHzZ9OyLx9P9EbOs4RBs:SWOBxenFdhEQZBvUIN9zx9leT4RBs

    Score
    1/10
    behavioral5behavioral6behavioral7behavioral8

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/perftools/controls/hubControls.js

    • Size

      210KB

    • MD5

      8f336cb6f04513ce6b965a002ef8ad51

    • SHA1

      cf19a6010b6aad917086865efcabe37dfd30daf5

    • SHA256

      298796c9bcc546850db135305d4e4c56e31e06575f21a910f0919c95fda01738

    • SHA512

      1b766e36028b71153847befb1a71a5ab955a0f2d1e228aea8185884c54fa152685570bc9e45d1ed62a68af31ee480ea9d12aa194eb67dfa1b5f93af8febb712e

    • SSDEEP

      3072:CPR5xxz+josnXuh5ru+nAkRCAsnJGJYxMt4rDqDQd6QBxcw7TfGZDj0HWM1fwSX2:0R3R+jTqeMYXG34ino/gciAzkaEcB/+X

    Score
    7/10
    antivm

    • Changes its process name

    • Deletes itself

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral10behavioral11behavioral12behavioral9

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/remoteEditStack.js

    • Size

      2KB

    • MD5

      cee1340ee8d22179f71d425ca228a33d

    • SHA1

      7bb48817ab4dedfdbd9727c85a76383acb237253

    • SHA256

      c6a9005ef221fe3ccb43c226bc0c7844b062800eef5ba5b53ee7636817650ed0

    • SHA512

      d1b2b1cdf6f6b39df279f77ee453050edd1315d01fd16d9c88f759c0461c85aceac825b71f08b2545afd65e3f61cb728fc8e01f318747ce99e31a65b8516f564

    Score
    7/10
    antivm

    • Changes its process name

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral13behavioral14behavioral15behavioral16

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/remoteHelpers.js

    • Size

      10KB

    • MD5

      30201fb18ec1f0f0c711b93871ceea05

    • SHA1

      4f9a5363399297c779e5699eda99b98aa924119b

    • SHA256

      b6c0b43d69b7161e47be6f25f3c5fd7324ab39d3fcd4b4fa7c2d28decdbafc2f

    • SHA512

      eb6395532c72529d8e7f87eac17372415330d2ccf01a16aeac97d66e9b29ab32fd4beb93242488b18d2997cb376ccadb091bd08041d8305cddc80bba5671440a

    • SSDEEP

      192:6Xjj8VmqZFuTwsmRaRzfEe++qFcE+nc/dHTn9twQNRinZmgLnxjxAd:6Xjo4qruTh3EeESU97RXg1k

    Score
    7/10
    antivm

    • Changes its process name

    • Deletes itself

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral17behavioral18behavioral19behavioral20

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/trace.js

    • Size

      561B

    • MD5

      cf68d6f484dc6f07d547cf8c23173539

    • SHA1

      e7d1bf5834b18bdfe2eb91fa1478ea9839183731

    • SHA256

      2529641f0347bb8f27889fcba36381db71c8b6773fb513bd31a46c2157869e52

    • SHA512

      84a6a6f752e2dbf6cf10bfb56ee76a903f36d92d5d02b564a6453b5cb04bf09065d9923333484ccbf57a07256eeb20ca98fd949e25491a41eb2b6d08446d8ae9

    Score
    7/10
    antivm

    • Changes its process name

    • Deletes itself

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral21behavioral22behavioral23behavioral24

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/common/uri.js

    • Size

      14KB

    • MD5

      f52cdf304a9049c8b9d3f90a0d8c43ff

    • SHA1

      7f885a1a2c4131510e2fe30e01b74ee60f294948

    • SHA256

      2f728abbb2a0f261056fc8e258ea1d0f7b70571f8944bdfe8a29e996bc39c34c

    • SHA512

      a4fc5eb44cbf7353417f6713eaa5bf277d2f23fdc965c1fc8b6247625ef7cdc1f37c40446fc4ef084e3998389c51e20b6a73f22d38b3e380a39aa3f4b616f0ab

    • SSDEEP

      192:pIL2KtTZ4YJNyp2uZEZefaqHskHk4JPFJPr3mb43/bFsHCsZTOB12PKAN4dLbuCv:pILsp28EgaqHskHk4Pxp6H/ZTnNyb9F1

    Score
    7/10
    antivm

    • Changes its process name

    • Checks CPU configuration

      Checks CPU information which indicate if the system is a virtual machine.

      antivm

    • Reads CPU attributes

    behavioral25behavioral26behavioral27behavioral28

    • Target

      SystemApps/Microsoft.MicrosoftEdgeDevToolsClient_8wekyb3d8bbwe/23/console/console.html

    • Size

      721B

    • MD5

      62ed6ea9fdac0d8f15be284e604ca8cb

    • SHA1

      5059079fe442b88eb8c7d1a59d0752861198cd2f

    • SHA256

      80b5bab7fb6afda062475c9ca15849ebaeb92ef4771916ab84db5c53e8d11038

    • SHA512

      5d03d1f6d1786dea280f88d32975931816aa611bfc5045d49640438c526b4a77c5244b55f6e915e41c349fc377431d3f3739bdd287e96d21196c54d8e038d506

    Score
    1/10
    behavioral29behavioral30behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
3/10

behavioral10

antivm
Score
7/10

behavioral11

Score
1/10

behavioral12

antivm
Score
7/10

behavioral13

Score
3/10

behavioral14

antivm
Score
6/10

behavioral15

antivm
Score
7/10

behavioral16

antivm
Score
7/10

behavioral17

Score
3/10

behavioral18

antivm
Score
7/10

behavioral19

antivm
Score
7/10

behavioral20

antivm
Score
6/10

behavioral21

Score
3/10

behavioral22

antivm
Score
7/10

behavioral23

antivm
Score
7/10

behavioral24

antivm
Score
7/10

behavioral25

Score
3/10

behavioral26

antivm
Score
6/10

behavioral27

antivm
Score
7/10

behavioral28

antivm
Score
7/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10