Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

A.exe

windows7-x64

7

A.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

Anycast.exe

windows7-x64

3

Anycast.exe

windows10-2004-x64

3

Packet.dll

windows7-x64

1

Packet.dll

windows10-2004-x64

1

anycast-service.exe

windows7-x64

1

anycast-service.exe

windows10-2004-x64

1

wintun.dll

windows7-x64

1

wintun.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    A.exe

  • Size

    10.7MB

  • Sample

    240311-zrezjaeb21

  • MD5

    25d325afb078b572b0fbca2b84aa264c

  • SHA1

    6ef782acf674f3e66b5973e143c2fdda7e076914

  • SHA256

    a3c3f7a0014e41ff435db5b87ec92e60ada72a94fc401cb1ef3cf6daf71630e1

  • SHA512

    f4ff58f70a06c425ad832aa19b3dd51b2b4fc534dba8d2cd68a49d5c22e3ce366f5d8b33cd687c7e5a64fb3ab02e60330d66a0c3bfab09750b2afaa508705b68

  • SSDEEP

    196608:CvyhL33XXLybGKdNGYj+MxmpVAI62jSBuUtW1lJwo2LrKUYV9bWI:CKhL3HyGGlj+E3I6Ev0Pex

Score
7/10

Malware Config

Targets

    • Target

      A.exe

    • Size

      10.7MB

    • MD5

      25d325afb078b572b0fbca2b84aa264c

    • SHA1

      6ef782acf674f3e66b5973e143c2fdda7e076914

    • SHA256

      a3c3f7a0014e41ff435db5b87ec92e60ada72a94fc401cb1ef3cf6daf71630e1

    • SHA512

      f4ff58f70a06c425ad832aa19b3dd51b2b4fc534dba8d2cd68a49d5c22e3ce366f5d8b33cd687c7e5a64fb3ab02e60330d66a0c3bfab09750b2afaa508705b68

    • SSDEEP

      196608:CvyhL33XXLybGKdNGYj+MxmpVAI62jSBuUtW1lJwo2LrKUYV9bWI:CKhL3HyGGlj+E3I6Ev0Pex

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/DotNetChecker.dll

    • Size

      84KB

    • MD5

      f18364fa5084add86c6e73e457404f18

    • SHA1

      6d87c4b9dbf78af88fddf0d4d5febe845c8e4e6a

    • SHA256

      39c43d67f546fc898f7406d213b73dcb1bc30fc811ddfa3a02b6b50c29d11f91

    • SHA512

      716892492390fe4314f3289286f733d07b8b84de1f5af0676b26e68c0be01808682d35ad2bb9e9491247b7bb5a0ea297a6850e26de9baf88621c789206107db3

    • SSDEEP

      1536:AZBjgSXlkq8su+OudgGpGlmQSMqJS4HGsorJKQUDs0OsWPIcdGbk2HeJ:AYvo7PMqEuiKQGbk2HeJ

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      15KB

    • MD5

      0a9fb96a7579b685ec36b17fc354e6a3

    • SHA1

      355754104dd47d5fcf8918dee0dc2e2ee53390a6

    • SHA256

      b34fb342f21d690aac024b6f48a597e78d15791ef480ac55159cd585d0f64af7

    • SHA512

      67870206fa7f1e7df45c8c1bc2f51fb430f0a048a2bdb55a4a41525388ca3b50203784537f139169705a03db4bb13b591162a79a5d2df81a4d11fd849615c86b

    • SSDEEP

      384:EFC43tPegZ3eBaRwCPOYY7nNYXCg/Yosa:EMTgZ3eBTCmrnNAo

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      12KB

    • MD5

      564bb0373067e1785cba7e4c24aab4bf

    • SHA1

      7c9416a01d821b10b2eef97b80899d24014d6fc1

    • SHA256

      7a9ddee34562cd3703f1502b5c70e99cd5bba15de2b6845a3555033d7f6cb2a5

    • SHA512

      22c61a323cb9293d7ec5c7e7e60674d0e2f7b29d55be25eb3c128ea2cd7440a1400cee17c43896b996278007c0d247f331a9b8964e3a40a0eb1404a9596c4472

    • SSDEEP

      192:nenY0qWTlt70IAj/lQ0sEWc/wtYbBH2aDybC7y+XBDIwL:n8+Qlt70Fj/lQRY/9VjjfL

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/UserInfo.dll

    • Size

      4KB

    • MD5

      98ff85b635d9114a9f6a0cd7b9b649d0

    • SHA1

      7a51b13aa86a445a2161fa1a567cdaecaa5c97c4

    • SHA256

      933f93a30ce44df96cbc4ac0b56a8b02ee01da27e4ea665d1d846357a8fca8de

    • SHA512

      562342532c437236d56054278d27195e5f8c7e59911fc006964149fc0420b1f9963d72a71ebf1cd3dfee42d991a4049a382f7e669863504c16f0fe7097a07a0a

    Score
    3/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/nsisdl.dll

    • Size

      15KB

    • MD5

      75fdbfddcb769095e6143eb46cc77e26

    • SHA1

      a1fed5cedbc3c3319e332ae3f5347319af1f3f18

    • SHA256

      e2267f1a80ca42fde50e6b22f39821334a9ea622995e0869d3709b05306b1126

    • SHA512

      3ff5485f7a3c35e55b94bd09019555945ab4fd9fe03cce1ea9c43bd2fd75b0a9502342eb36acefe16a3ebcd9efc1c1eeea2b9621d31baa27b035ce60ffa1f3d8

    • SSDEEP

      384:bpy18oahashajPmIYInUJggBOZgAHhUKijb:bpy18oafmeggBOCAHpij

    Score
    3/10
    behavioral11behavioral12

    • Target

      Anycast.exe

    • Size

      1.4MB

    • MD5

      df90ed2b8d1c23a3ad6a8338bfe4a9c6

    • SHA1

      b02dc10c8cfde967f621ee490ec8c0186d4d505e

    • SHA256

      14fb8abaa99c742fa685871c39874348433888da5ce5cf6f4656e99ffe99497a

    • SHA512

      b138e53c2f132071994b92c97d2ab3f6e7bee10d5794cf2550b6ab318c053b41b959a11e4da3d446075ab4bf96ebd3f55a3cba2457089c65b015d2684ac98931

    • SSDEEP

      24576:xLRHAgfSVJbyeUyUCiWx6drqLwU6H/544tbp+pa40vK1f43kwBa:zvubRHnxm+F6f+4hQY40S1fD

    Score
    3/10
    behavioral13behavioral14

    • Target

      Packet.dll

    • Size

      201KB

    • MD5

      5fc00659d63dc1f6d3ea47ad282ff3d2

    • SHA1

      cf1c989875a1a98c3ff4af0b469ee863636d1f06

    • SHA256

      3dec61995d23d603224c67c41a1f49fe39d9c7c174a92a387bc5507a3ceba863

    • SHA512

      8a00bdd0730a1922c9d29f4a202592c4088798dd767c927ce50b8625c71afb0f3e350e0a6f8d880fb6900f2ff6c9ad8134d8e352cdda97915be4ff28c0778d33

    • SSDEEP

      3072:9vLYEEJS6OMZSMlNwf8dGUzgY6DU1zleTfUM8dvcImWbFTAA:90isZxlG+GU6KAUPF

    Score
    1/10
    behavioral15behavioral16

    • Target

      anycast-service.exe

    • Size

      5.0MB

    • MD5

      6575f6d7e539bc890acc7587aa0d2507

    • SHA1

      4979fbe5ad1ecd1c684d8f08de9cba45ab8e6a62

    • SHA256

      5f92d54e009f53a8ecab96aee2621c76d12989595f52045a59030a62e6b6a37d

    • SHA512

      0ce7abeb78312d2bf1573193249c3b9b09e01e374f6c7e2796b2062d53be3328ab853bb97b4a4b596d1f9ccf38f0de5df84f9692ca84fa9a79ade755933e4e2a

    • SSDEEP

      49152:SBkK77XNPBEZQGagb2tc526+YbAzNvoXO9dK+gMJ6TPiNM/B1V/OwKcB44HO6ObV:Ab77o3fgc5HhXAjC1/OkHO6Ob4/dJKl

    Score
    1/10
    behavioral17behavioral18

    • Target

      wintun.dll

    • Size

      417KB

    • MD5

      e861eb5789c50997d9476a6172d1c269

    • SHA1

      647eb6588b149efe2477fd192c8cab74d018d8ef

    • SHA256

      e5da8447dc2c320edc0fc52fa01885c103de8c118481f683643cacc3220dafce

    • SHA512

      d8b49a6834c1ea5d73fee6979c59def18900c86d598ea900ab741ce71eefdaaadb4862afefa14e6cc093007eae5d4325857633549f1ade555baa0344b18e6112

    • SSDEEP

      6144:uNsLgQtz9nDZL4tFDjiaOE1DfsnyDQhWmnPIt:iggQh9nD2tFviW4/Qt

    Score
    1/10
    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks