Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

212bc3ead4...de.exe

windows7-x64

7

212bc3ead4...de.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

loadmov.html

windows7-x64

1

loadmov.html

windows10-2004-x64

1

loadmusic.html

windows7-x64

1

loadmusic.html

windows10-2004-x64

1

loadtv.html

windows7-x64

1

loadtv.html

windows10-2004-x64

1

mov.exe

windows7-x64

1

mov.exe

windows10-2004-x64

1

start.html

windows7-x64

1

start.html

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    212bc3ead48049a4a09b9bc2fb3d058800a76d73d82fe345e2db931bd270f2de

  • Size

    711KB

  • Sample

    240313-wsfqnsbh5z

  • MD5

    4d85e653d194f6bbe6291cc1bec95220

  • SHA1

    8da5c1459b6a3701878af97e0c4808df44deb7ac

  • SHA256

    212bc3ead48049a4a09b9bc2fb3d058800a76d73d82fe345e2db931bd270f2de

  • SHA512

    d32cea52151974f1b835aef56273d4734b40fa1639793c7ef4947e627a01b20e3af79896e463501a5a900462e0cfa3f83199f3acf46293b2d71ccce2725f0856

  • SSDEEP

    12288:Uyi3pbKzoNlYzsJ289GrMCxHhmTTQWmTeNMx2VmnHoZQuDVrg1eob6HwOI4:UyiFKzq2892MCxHhmgHH2VmHX4VrgAos

Score
7/10

Malware Config

Targets

    • Target

      212bc3ead48049a4a09b9bc2fb3d058800a76d73d82fe345e2db931bd270f2de

    • Size

      711KB

    • MD5

      4d85e653d194f6bbe6291cc1bec95220

    • SHA1

      8da5c1459b6a3701878af97e0c4808df44deb7ac

    • SHA256

      212bc3ead48049a4a09b9bc2fb3d058800a76d73d82fe345e2db931bd270f2de

    • SHA512

      d32cea52151974f1b835aef56273d4734b40fa1639793c7ef4947e627a01b20e3af79896e463501a5a900462e0cfa3f83199f3acf46293b2d71ccce2725f0856

    • SSDEEP

      12288:Uyi3pbKzoNlYzsJ289GrMCxHhmTTQWmTeNMx2VmnHoZQuDVrg1eob6HwOI4:UyiFKzq2892MCxHhmgHH2VmHX4VrgAos

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      fa5beae80dba254fb6c21b58265f5310

    • SHA1

      f2f776611dbbb157b151aa744a7e0be1d4b8c079

    • SHA256

      34b8a2130729064ca2f9b3b8e6f90d883d84662156b648a4eeccefefc3473269

    • SHA512

      7c74b9e9f1ff0665ffd6fcf76fca462d9f4fbd7c4a215bc67b419497ef4c3cb9cede6c5b0803cabb316bc5391c4c6f0d578d36e1094b8ed326b140f8e272b538

    • SSDEEP

      192:06JaVGQ+xI5EeuyvMmGpeWH2J5xprN+AxTZK72dwF7dBdcQOz:06JaVh4I5rpPbTZ+BdhO

    Score
    3/10
    behavioral3behavioral4

    • Target

      loadmov.html

    • Size

      822B

    • MD5

      6f2fb6af185f4be57444b63db9c3307e

    • SHA1

      0df9ca1ea9ded26b90aa0533ffa7e4f24af988e2

    • SHA256

      84bcd28bb32ae35fc537bd0fa62c9a50ef6322e8b2dba50db4efb75e4228011f

    • SHA512

      94e6ad4aa8a755e3b2344bdc464d7178adca4dc2173714008c914b4a3828fd40bc6602dba7f13871b9bce35f19a023f873f7bfe1257fbe26b9a73c12473ae157

    Score
    1/10
    behavioral5behavioral6

    • Target

      loadmusic.html

    • Size

      768B

    • MD5

      3f7774f9ffbb9e58931fb8f77358ee4f

    • SHA1

      ff0d8fd68d8b8da607c5800e574fdb9982f822d1

    • SHA256

      26da06ac12aaa441c2ee1f17ffad0d647c8b53f04782eea416a3e3a2003687e5

    • SHA512

      3ebdf923f5c333dd840343d40931a9fd6ac9fd0a4c8de7c617d17bfcc69fdc59551a0e04c2e43702096c4265ed836dcaeb86d2dad960237a38b49be3680cf206

    Score
    1/10
    behavioral7behavioral8

    • Target

      loadtv.html

    • Size

      766B

    • MD5

      34f6af8ec566877c3d5c147f4855c04b

    • SHA1

      33091ca684b7bd47aed0e2f4a46eb42c9eb93449

    • SHA256

      e82c61d58efac4a44a0bc22cd1f94303f6f71ebefa685d45bc9345cc9c40d890

    • SHA512

      383992e3b1121aef27c65fbbb19dcf9458d861d0b19b9a31d8334a70ece8cf94b0f6a43342716432662a872ce12f37e2d24a69abbc46680a53f8ed2d51af50c4

    Score
    1/10
    behavioral10behavioral9

    • Target

      mov.exe

    • Size

      1.3MB

    • MD5

      8f7de6d4585d842e7542f7ee22c9433e

    • SHA1

      60d1d33128ea79ca76b9084a59383a97df1d6946

    • SHA256

      92403dc213a5390bae3a8c560d706445aa982fa9f795f8e1b681e1db4130dc65

    • SHA512

      a8f5788091eb4770c5c893fa79b233cb17a171446e6258bd749041c3a790395ccfa6a972c81e101e22246be591ce149e1cb4770f1f3a928d051eafc0ffcde277

    • SSDEEP

      24576:vmU51UfQMzW9E/DRhvT5lqBaS3nONX8CBz1LWbwcsJkcMcb:vIfhu8S88c1qbwcsJkcMcb

    Score
    1/10
    behavioral11behavioral12

    • Target

      start.html

    • Size

      3KB

    • MD5

      eb71da36f0d9400d3229b24f101f4164

    • SHA1

      7a98423580e88842fc52a60e67ebc6b3ce83c86f

    • SHA256

      3a898bd47fa2ab5662e35a988029b87d12aaf3e824d171cff29157796e138f92

    • SHA512

      31c78bdf0aa7c23cf1acc50f77eef3cade36775d0f097fa87b6444aa997992c9a00a52a3ba2162fbc32f7abb5058ff54195af67aa5f8562507fe3803480570a9

    Score
    1/10
    behavioral13behavioral14

    • Target

      uninst.exe

    • Size

      56KB

    • MD5

      f6313f7be0575c9d49f5cf44e431f7d9

    • SHA1

      132769d949d4b5907ff584d99ca157cb6fac8338

    • SHA256

      70a077251855c3a51f51d8e76accee44b1e0339ace20abd39b8cde56314439d2

    • SHA512

      07d2cc6c67349bca9d84c012b27150d1f7c9bee81e779e54da4c80c87570984014b4a834e5c3f9f8256e072edb43cf036dbb0a3fbcfffad08d7ddfa7a914b51e

    • SSDEEP

      1536:IpgpHzb9dZVX9fHMvG0D3XJBgu4D0LbANpH4:+gXdZt9P6D3XJBvbAA

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks