Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

FREAKIN.rar

windows7-x64

3

FREAKIN.rar

windows10-2004-x64

7

FREAKIN/jr...mo.dll

windows7-x64

3

FREAKIN/jr...mo.dll

windows10-2004-x64

3

FREAKIN/jr...pl.dll

windows7-x64

1

FREAKIN/jr...pl.dll

windows10-2004-x64

1

FREAKIN/jr...pl.exe

windows7-x64

1

FREAKIN/jr...pl.exe

windows10-2004-x64

1

FREAKIN/jr...nt.dll

windows7-x64

1

FREAKIN/jr...nt.dll

windows10-2004-x64

1

FREAKIN/jr...2k.dll

windows7-x64

3

FREAKIN/jr...2k.dll

windows10-2004-x64

3

FREAKIN/jr...io.dll

windows7-x64

3

FREAKIN/jr...io.dll

windows10-2004-x64

3

FREAKIN/jr...aw.exe

windows7-x64

1

FREAKIN/jr...aw.exe

windows10-2004-x64

1

FREAKIN/jr...ws.exe

windows7-x64

1

FREAKIN/jr...ws.exe

windows10-2004-x64

1

FREAKIN/jr...wt.dll

windows7-x64

1

FREAKIN/jr...wt.dll

windows10-2004-x64

1

FREAKIN/jr...wp.dll

windows7-x64

3

FREAKIN/jr...wp.dll

windows10-2004-x64

3

FREAKIN/jr...fr.dll

windows7-x64

3

FREAKIN/jr...fr.dll

windows10-2004-x64

3

FREAKIN/jr...ia.dll

windows7-x64

1

FREAKIN/jr...ia.dll

windows10-2004-x64

1

FREAKIN/jr...it.dll

windows7-x64

3

FREAKIN/jr...it.dll

windows10-2004-x64

3

FREAKIN/jr...js.exe

windows7-x64

1

FREAKIN/jr...js.exe

windows10-2004-x64

1

FREAKIN/jr...li.dll

windows7-x64

1

FREAKIN/jr...li.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    151s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/04/2024, 05:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    FREAKIN/jre/bin/javacpl.exe

  • Size

    68KB

  • MD5

    c2a59c7343d370bc57765896490331e5

  • SHA1

    a50af979e08a65eb370763a7f70cdb0e179d705d

  • SHA256

    40614fe8b91e01ad3562102e440bdbf5fac5d9f7292c6b16a58f723bfffe6066

  • SHA512

    ca266f1b2e51f66d119e2d71e3377c229a3d583853ffb606c101afeb41689ace7d1f1594781091da67f9be9d09f3019bf048c0f819777e8f1827a56beec252c4

  • SSDEEP

    768:jFVfr2k521ZnrawwMmqPXt+rP3b/9/YMCxx0OpPOrEE14EVHLAuDeGJiqrmehiV9:PxioMmqF+2x0MORLVq7qjh3rmKPNpwGg

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 6 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\FREAKIN\jre\bin\javacpl.exe
    "C:\Users\Admin\AppData\Local\Temp\FREAKIN\jre\bin\javacpl.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4588
    • C:\Users\Admin\AppData\Local\Temp\FREAKIN\jre\bin\javaw.exe
      "C:\Users\Admin\AppData\Local\Temp\FREAKIN\jre\bin\javaw.exe" -Xbootclasspath/a:"C:\Users\Admin\AppData\Local\Temp\FREAKIN\jre\bin\..\lib\deploy.jar" -Djava.locale.providers=HOST,JRE,SPI -Duser.home="C:\Users\Admin" com.sun.deploy.panel.ControlPanel
      2⤵
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:4016
      • C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
        "C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -getconfig=1
        3⤵
          PID:3504

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\deployment.properties
      Filesize

      785B

      MD5

      c42afa5129589a9103cefaf83348872f

      SHA1

      7fabb12a3240f80fd4754bdeeea2c3b0a8f3af17

      SHA256

      ee76a3c40e28b7f5c4b534bae10c9ca8a4d8e3e24cbba54c5cdccdb45084940f

      SHA512

      5563039b1decb0e636509241355ae23d2856e4439a6f43fcb7ed3fe8b60d55e9566e162b11ffccb77ea15f6bfea702aa3fb55336089b3ac15cad3efba1db6891

      Download Submit

    • C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\deployment.properties
      Filesize

      747B

      MD5

      bcf68fab0f28281d8d61e9eb48560c26

      SHA1

      7a84ef0aa8f8d430fc3c1a2c865272719e933eeb

      SHA256

      1d014e68550cda75dd26706ac250b2df774595f1a86f5395336268c9eff4a899

      SHA512

      81ef0f87db6bb066ff073a9d9920abd99a1e37bd1e1800810e21c671af78c4b4ee89c6689b60daf3db6d8c50a946f1f977f42d00fa254798613ecd4e3d07f05c

      Download Submit

    • memory/4016-54-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-84-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-36-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-37-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-39-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-42-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-47-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-48-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-10-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-57-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-62-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-66-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-70-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-73-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-115-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-21-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-75-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-112-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-31-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-114-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-121-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-117-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-118-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-119-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-120-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-116-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-128-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-135-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-11-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-149-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-156-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-160-0x0000000001620000-0x0000000001621000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4016-170-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-178-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-236-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-245-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-265-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-274-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-279-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download

    • memory/4016-287-0x0000000003110000-0x0000000005110000-memory.dmp

      Filesize

      32.0MB

      Download