Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    df7ee3a02edbc79f874811fee8288b9e

  • Size

    13.5MB

  • Sample

    240326-sv64vsgc3t

  • MD5

    df7ee3a02edbc79f874811fee8288b9e

  • SHA1

    e0862cec10ada6681f4c4e04fe55194f447695c9

  • SHA256

    b75ff60aaccd7c025a5a2d27afc266bf23808cf46840a4bc868859f0902e09a8

  • SHA512

    59cb36794a4334719cf95744943ffdf56ce28c05daffc390a6d2610b8422a12388b91c824bc681f371afdafe217e818aba0ae5cb786526d918a02e0e9c2e95aa

  • SSDEEP

    393216:zJBkVmVRnUTa1qogJjG0SM5XBXEP+9aWGnT9AStgrT:zEmrUTa1qM07UP+MXBAzT

Score
7/10
upx

Malware Config

Targets

    • Target

      TwistedBrush/ArmAccess.dll

    • Size

      52KB

    • MD5

      86fd498c00a9a8e9c4de7c8c0382835d

    • SHA1

      bd070cd044bc1d31460c85907c61e53455292e0f

    • SHA256

      5d0b8bce53ca837f4147cb48f08995f2ec7efef8ff6c0b7849ad471d96038a5f

    • SHA512

      809477406f50ae78017d66e1c56af4bfb67fb1cc7d5dd46783a270f300fbe7f3209dda3775da04e70ebd2de3d73277b3a14fa96b7e7567de4ba627e0fc3de1b7

    • SSDEEP

      384:vWNNgJdY59tTulkbETxYpx6y2LfiqoYBUcz837yIYh9JzxovS1f2uUIiho38oqee:+IwTulXtkmfZBe7EtFovs2I38ozSihb

    Score
    1/10
    • Target

      TwistedBrush/EZTW32.DLL

    • Size

      64KB

    • MD5

      a3f0682d40210eeb704a0d5c6878e128

    • SHA1

      aca06cab2e62ab7003809724879e28a882043c80

    • SHA256

      9027feb2b27ab38414b505cce265ff9e839bf4ccb6bc4ad3498a5c3553eb492c

    • SHA512

      7615fe703dac418e3e04f563da90046154a0e19d83c78c6a400ee7c1d2e7adeb41e961ef9db5f657ced0361a289c571e2505baaf07685467bacfd77b14d674ae

    • SSDEEP

      768:j375DeiQq4jBOhZpu8k0La47Tv4CL98mgo3gANwA/vbGP6wqiB9DnJr56okr+o4N:T7oiWjGPPP7TvZ9Golo6wt9YiogPL

    Score
    1/10
    • Target

      TwistedBrush/ISL.dll

    • Size

      114KB

    • MD5

      1e7b267a206d1ea887d930747d5d7062

    • SHA1

      5402b2d248f469f1f90cb09a9e28d5107741c1e9

    • SHA256

      c958755cbed8135e4a7e0b929098d5c6060f910e476766df6155bfae08278984

    • SHA512

      35ba382414507ee089925ecddb592761a0eeddc9cf3c6f599c41413e5af46c1f7477bc42d86ec937c081965291e31e1c30c5aebbc3e387af8b91449cde71d982

    • SSDEEP

      3072:0QvTM6jJ7eGg4HYKxuwLmh0yIlsN3IKNnGYgsvW:0eghGXVuXKEN3HJtgsv

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      TwistedBrush/Image2PDF.dll

    • Size

      772KB

    • MD5

      15ba076becd1173837ae29a4fcd01d29

    • SHA1

      67962430c4d4850962e2dffad160159a9f2a7776

    • SHA256

      cecabe0f66119aa78da0c3386d084033a4ced3d8d869c1421af28f3b3b1b5d9a

    • SHA512

      541f880c65fb03520d0fd71a156f62b8631520ec68ecac1dc916671a8d33bd6fc030b260187e5c39933a662aba415f0def76b4516529c898a13f607a9e89eb58

    • SSDEEP

      24576:ge1ok43G+BcnksGisV+xRtPw7BrZhAkt:WVWiiG1t

    Score
    3/10
    • Target

      TwistedBrush/TwistedBrush FAQ.url

    • Size

      127B

    • MD5

      2f8286c1a25cad7c45125044705947a2

    • SHA1

      24ed17b1a58951ca120481ce73ddaedccff6f608

    • SHA256

      b12b079d425a4980f7b9cbb7b619fb84975e4740395e1879c41f3040fd1b5910

    • SHA512

      0af43c0695e3a759a4726d92f80b106fa5edee0abdb2bdf1e0579d60b534afcbb524e9ca9da939599584503a2875890ff718039359a634ff51965318b5ca03b8

    Score
    1/10
    • Target

      TwistedBrush/_ISEffects30.dll

    • Size

      248KB

    • MD5

      f9875cb7fc85dcaa061283a7705bd527

    • SHA1

      1c612baf271410ca79b0034109fb4c5203cb37e1

    • SHA256

      6cbf2ca8e6cd33091a50136631e1f548f012700bb53fd6a3732314e1d63ff7e5

    • SHA512

      3a4c7f3c4dc4a8dd60adbf79d4327030036fa2c08795e65d19f6219b179adf3c3ba3815718a0ed0a92cde1c57a9e774f17627289b7ec09e7f4c4daf97268c6d4

    • SSDEEP

      6144:O98nD5VhNKBZWbAwbxx2dThooTR1a4n6:OgjfTbjbxodTmCTVn

    Score
    1/10
    • Target

      TwistedBrush/_ISEffects40.dll

    • Size

      335KB

    • MD5

      6e130953423f7c6ad633510a10e9b21f

    • SHA1

      293c9d68464e530ee52987ad4622d93471103758

    • SHA256

      712d653c5da7dd13d7b2af85e1e8c86ba0a43248947b77f5a6559dd774ce54cc

    • SHA512

      8c7f75bb1ad7ff1b1355e445b50008df5208603a75efdc8c18c358e3dd9fb599efee210aab4e9964601777c8c116a3de302e94e3dad56129d40afafa2308bb91

    • SSDEEP

      6144:NDfh9T6sAknHF8TZkUz34jjBSnxZ1OXbZfetU7TUm2j712I1CnrHdACLE:Fh9T69TZN3MjsnIlfeCUm81xCnr9AX

    Score
    1/10
    • Target

      TwistedBrush/_ISource30.dll

    • Size

      1.0MB

    • MD5

      2384f086121dcd5ca9ea74cc6ba24559

    • SHA1

      e680eef7227001286e5330eebbacab7e98760aa0

    • SHA256

      ec89c44da35d3c592a601a804672de4d613627f706f42a9b4b06c9a60d40366a

    • SHA512

      ecba6e37f838231ef452c126239f920be6294cf3e5293e64191b0943f44ebfa6dad001ef834fa7de785d13e0b9bcc7f8cc3cb23ee17b9b1acd3998aeab187229

    • SSDEEP

      24576:RznYWOzS6CN6h8rRLNMhZ8iL7bmfVW1C4ySwn+nbYfb6a2NjcTrnyixSi8u:pYWOzS6x8NiDfb0VgyzT3Tryix4

    Score
    3/10
    • Target

      TwistedBrush/_ISource40.dll

    • Size

      1.2MB

    • MD5

      a193bc099e79424d4c03506f0575fe86

    • SHA1

      09f293fb442bee977a6ec4106a120ef1a028d705

    • SHA256

      02d7544c047e91d3742361ccaaf5b75f3e092640d35dea7a951ff7da39b6bc40

    • SHA512

      44c63be92dbf02e82bb2e8e4d2fb77b11b02a96aa823c6819ab7e3e108354da1b35e988a1171ce32a9bb7b1e7c59493f0e272cb791db86596cb761f00a97791c

    • SSDEEP

      24576:/YqCL++RDr8X7SM/Yy7eQ6VNXkMBSJ9pRCmoLfiS6TS9/T3whZK1i+MF:RC6+RsumiQ6VvcJ9Gl/TghZKEF

    Score
    3/10
    • Target

      TwistedBrush/clipboard.dll

    • Size

      44KB

    • MD5

      6eb8113fb62f5bf255726d1520017c29

    • SHA1

      1480b5a537788bdb663ae4db242572a89ac1ce1d

    • SHA256

      64c6dac03c8a8206d95d7bcd44e28e3d2459542b0a40556908a03fd421298032

    • SHA512

      5d4f3d6a3239af25aa1deb83e01af360d9982683907fce6723db2d98a5bca146da7a4ac19004c3d56ca221b571ce49a5c3667bb31b9713966a05a60b5185bb43

    • SSDEEP

      384:IQFzgkrKTf1y2G5qqxCLHlsnWL7ju0Mrh3TyTrFHWui+cA/8oJTQ8:I+bWTNy2GgplsnWLuhTyFHWI/8oJ7

    Score
    3/10
    • Target

      TwistedBrush/sketeng.dll

    • Size

      552KB

    • MD5

      764df5a3305ed790269bf6f5f59589c3

    • SHA1

      08215ba96738559384b99d27a1586b420d7c4cc8

    • SHA256

      f75efc266e9cd6d319e8be8932452c26494daf2a5600989c894c6a8e1c882f45

    • SHA512

      deda227c816559a32a6c4c1eb6d311f631e90b6358331448723ad6a4346531b9846131607cd021f1aafa9f293e56f182724ebb3dd357882e6dedf7f7a7e16206

    • SSDEEP

      12288:4DPWZmWb8NPmQEasMZhhrwnv2DCUAWJdd:4DPWPafrwv2+

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      TwistedBrush/sketutil.dll

    • Size

      451KB

    • MD5

      14fa9868060fdf5564981aa26cc3fef5

    • SHA1

      f799d970a563100bae407cf88aa6a356e075af1f

    • SHA256

      e0e18228c04344142cd20555c055e368198576e2938c2ceaf3f49e373f921460

    • SHA512

      9b1b7d81467a2eadd28053dfb08fe40c43a066d191f9887d51e98b8ab009d1ea7e344d37e841323b7e9d82a8b0c23af5a535e3721eee7d24d81dfc670817a445

    • SSDEEP

      12288:q0ujqqRKY/0uQ0TYYvIlMqtKWbrwm7j5MWfKBqh/:q0ujqqRKY/0uQ0aMqtKWbrwm7j5MWfKs

    Score
    1/10
    • Target

      TwistedBrush/tbrush.exe

    • Size

      4.5MB

    • MD5

      62cebc5db83820edd5513b55e7d31d2e

    • SHA1

      304b5ad2fc24c85f925de74ad31451febc8310e8

    • SHA256

      7dd6d8d37b589e7f91adba8c57272ca20cdf22d43c3d8a01d7af37e8e38ad413

    • SHA512

      2447f5ac1c2fff104f2d2c73a6fa698d16a4f01b7201e9e4804f17d08672e558a40638cf02ba4839e7f764c5c97624663c0401f1665c3f13f5ebbc7d31c11e34

    • SSDEEP

      49152:D6EEZtfUDQkkj7Jaopyt1x113f71VElPrUlYJP0DACRPlFzzIRTt6P3tssH3rePP:Kfu4jdao09osG

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      TwistedBrush/绿盟 - 首页.url

    • Size

      309B

    • MD5

      184d42a25ccaafdca3c1a0042688268d

    • SHA1

      93bfc8aa4f7b92258200265f0b81134dbe980b90

    • SHA256

      4a2675be8aa7e279ad2d0c08d211fe515795e1134211826cc04c3e2d9d081585

    • SHA512

      577b9f0e48f09ec17b3c93f3b4e93636711f8800626830dc04e18dea958641207c923127fff1a17b18e4b5ac2db69665bed94794ad27868852946c80471df11a

    Score
    1/10
    • Target

      喜欢此软件_love it.exe

    • Size

      66KB

    • MD5

      d4d4be4bd56ed03eca031be8b8a9814c

    • SHA1

      06d4aef8a831a883c5574d4b46c29df4b81992bf

    • SHA256

      c90d9af17233a717fdb8b08d45749680efeca7046deef950ff1d4e987be68681

    • SHA512

      75d5a6df561b4bbd497a45bb7feb4f11dce2b28eff93ec8ffe5cae0cdde0857f5346aa498bd908307f81c1f15cac088cdc1ba96434ef4a2d135bcf45063f96cf

    • SSDEEP

      1536:JdBoWdHaDL1UOUc01anifKUYJFqLa4qpqR:JgWdHaDhocDGKU4t4qpqR

    Score
    1/10
    • Target

      我爱资源 www.52zy.com.url

    • Size

      162B

    • MD5

      104cb539486e9c71ea32373d170d9c45

    • SHA1

      6d00dc640a61bd38cf14b552951f0c98266668a3

    • SHA256

      2bb12c02f0c11d2e6521178f477e4068f1eb325e5e6b9b5a1b12a6f2d241f13c

    • SHA512

      e1e92ec42f8b52a5f8fbccb548c977a979959c5b5b7f3e3aac968a694f1d3542e02076bcaefbfb6004ff880a5d7f97acfbfab1408b62fa21c83e57d9d4c62fba

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks

static1

upx
Score
7/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

upx
Score
7/10

behavioral6

upx
Score
7/10

behavioral7

Score
3/10

behavioral8

Score
3/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
3/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
1/10

behavioral20

Score
3/10

behavioral21

upx
Score
7/10

behavioral22

upx
Score
7/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

upx
Score
7/10

behavioral26

Score
7/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10