Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

TombR2013+....0.exe

windows7-x64

5

TombR2013+....0.exe

windows10-2004-x64

6

setup.exe

windows7-x64

1

setup.exe

windows10-2004-x64

1

当游网_...om.url

windows7-x64

1

当游网_...om.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0a756224b9d5359e091a4e2be497181c_JaffaCakes118

  • Size

    2.1MB

  • Sample

    240430-1cldfahg94

  • MD5

    0a756224b9d5359e091a4e2be497181c

  • SHA1

    d6fd2f496193913b5efd719081829a15912b94ae

  • SHA256

    d3d9617df019e3ba09ed4cf77f4a0c9f78f4f40abf7da340dc0eb04cc56f6e05

  • SHA512

    aa870441819460d66c19372a79954c403afea18e697cc8a14a89ea239a0d938470836a00c3ff83bb115a400beeb395ec9462cb56f0c83a655dbf7e602fd56f4f

  • SSDEEP

    49152:af99YjlmVpcWOXi+KZOoYWQlACPU04+YkvUSEcfJJbZ:y99YjlmVpfOy3ZOPN4hkHEcfvd

Score
6/10
discovery

Malware Config

Targets

    • Target

      TombR2013+9Tr-LNG_v1.1.748.0.exe

    • Size

      1.9MB

    • MD5

      34627372c8caec9ae64a1c278c2b489c

    • SHA1

      3221cb73571731d3d3906231e4f8c4901e8a2a82

    • SHA256

      64c0697b4f7de9b643305e16b1f826458b0c08b2d56b5753b22e2b96bc9d4b98

    • SHA512

      c746d33e951611c73bdeb4bc0597eafd7c53f0a2aced0d2d15cbdc8bbd14f53bb67f7216065fd8b2c7ad3c1087ef2f6f165754510940198d7da0be7c949b4af5

    • SSDEEP

      49152:c4pItUDiqFtm4eCW9b3KAk1GzhMUrbGDP1NVP2ETmeFo94szWH:x2qF7eCWsJ1mMUrap3P2Yyjz

    Score
    6/10
    discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

    • Target

      setup.exe

    • Size

      584KB

    • MD5

      5dd749927d1bfce97a8e766941decefa

    • SHA1

      2f14dfca70001ac41433eba2feaeb3dd99379ada

    • SHA256

      516fb75211c7bce16a5e0c625e25eebda7f2103ebece1473a7a45094cf79f12a

    • SHA512

      9a8ae0478664470f264479c84cccef46a0c59432599acff6d7fca0334a866beed03520414d2c4a0cc1a86afbb705715f307df3e50bc7917b23361ffa858c4050

    • SSDEEP

      12288:VbD1UDWNSVbJIwnPaBlPZ4SEha829ffi2Jx3h6wq6/c:V/1ULbJIwPOySEha/9ni2J18wq6/c

    Score
    1/10
    behavioral3behavioral4

    • Target

      当游网_www.3h3.com.URL

    • Size

      64B

    • MD5

      26e01bf2d51f5806eaea5740dbd78be1

    • SHA1

      a822752b39c31303394be2d8ae13b3fb27d7329e

    • SHA256

      e58f52eb68ecb7d8ff4a221b140ae1815866eb1cc7429f8df844e8bb76a465f9

    • SHA512

      a86bf70058f390a8078c8f73af6710376754b922341ccde2ba461769e84c48c165c8b1a9d7b208b844ab9a40801a1205e6ef00bddefcb4752a26f3eef40ba486

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks