Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

使用说明.url

windows7-x64

1

使用说明.url

windows10-2004-x64

1

晨宝机�...�].exe

windows7-x64

7

晨宝机�...�].exe

windows10-2004-x64

7

晨宝机�...xe.lnk

windows7-x64

3

晨宝机�...xe.lnk

windows10-2004-x64

3

极速软�...��.url

windows7-x64

1

极速软�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0c7f86a26ed22ff7c1df166b46bf596c_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240501-wwf6lsda5s

  • MD5

    0c7f86a26ed22ff7c1df166b46bf596c

  • SHA1

    cf470cef08e22f406f87c2c454ca34a4ed7298e0

  • SHA256

    1638a9d7a5e687d96a71c29e46773afd2a4e1417ff436d2c17cbe081251d228f

  • SHA512

    027daab71e980fd73c132cca5b8050dc94bbb9440f601648805d92a9b46fc8f3e4109d140d56f8d0677d846c53d2fde72fdf05735e1f41a11beb658d30d97313

  • SSDEEP

    24576:6IAOpk2XTlKiLL7/TUScaHLXspWIjUlQOrBOcExkRX6AFIqppkbpHiG5b0Ck:jpVXsivjTfcaNYzcECpPFIqpebpFnk

Score
7/10
upx

Malware Config

Targets

    • Target

      使用说明.url

    • Size

      126B

    • MD5

      59b9685cba5d2ac1b35f7eee4a17fa33

    • SHA1

      68530715b329fedf68518267634094c35d51a9e9

    • SHA256

      46df9d8dad577577f3da4a6eefeb531616614f62fee20e9de3adbb088d0bfed7

    • SHA512

      a7f8b6b5bf1978a95195f79bcf1acdb027a737edd70a338adef8a095703cf11c4370fd86c861e802db7d7bb751aee0aee1d58149d62044802ef987c4149719e0

    Score
    1/10
    behavioral1behavioral2

    • Target

      晨宝机甲旋风辅助V6.4[稳定功能].exe

    • Size

      1.5MB

    • MD5

      566435d98e1aab33b54e3ea0a1b39123

    • SHA1

      869d7dee81a11256247ece983c9d429d85fd575c

    • SHA256

      a270b3d10167384b44b1d4096e3194bb3080ca1398b61d095cf900b9cca04706

    • SHA512

      525ef49b6eb894a68699385422514335639b398334a601efe8c1ef6ccef9907cdc5b7469ed735dd82220ab85f1bdc901b42fe4aea731806225ba4bfe5fe845e3

    • SSDEEP

      24576:SE6aZhcJyfLxh9fsFOksQlE/D0o5J6Z1ZylvekSFYyP4M2cEiej21ZWhtrg/9igh:SE68mJyfLxssQGzJEA9+PR2cEC1ZWbow

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      晨宝机甲旋风辅助V6.4[稳定功能].exe.lnk

    • Size

      2KB

    • MD5

      a7cd3193a76ccccb1233a443828a077c

    • SHA1

      24b3a5af00157f5d13de0f074783dd8760ac100b

    • SHA256

      778120a2064dffaad0530e24de547751c494b75559c3d54604bafdbb12fe39da

    • SHA512

      1f374f507391bb74dfff3fbdc82f6c29c40ac72ce336d07ad3304c20056798ee5efed30ee144e8cff15fa0a7173ea3c6b968e24ff681a9f28f27c9bdc29d2311

    Score
    3/10
    behavioral5behavioral6

    • Target

      极速软件下载.url

    • Size

      331B

    • MD5

      48195bcd2fcc73d4ed844ff646587232

    • SHA1

      0fc74b362d3dcdb639cd86a01e7c4e3c2c0fecc6

    • SHA256

      49c1ace06a959cf0600de6526917ad47efa7a69860c6372226e295ae451c10f8

    • SHA512

      28a341d90b11526a8ca30ac1221eb08f57ae00a9c7fab17043f390009ce8f0e4fb4b05040269aeffd6276d8fdf114cbec697997875d33dbc9776220aea490d0b

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks