Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2af263f0bb2ea92ae14eec36be4e5fb5_JaffaCakes118

  • Size

    1.4MB

  • Sample

    240509-ver14scd7t

  • MD5

    2af263f0bb2ea92ae14eec36be4e5fb5

  • SHA1

    da93e2082bb4a8810f29e91e69c19877e4e02bd5

  • SHA256

    020156f1d85f4b8682e5ca1acb64805830957b444e72a11187ad0a1b31cb8ce3

  • SHA512

    ee227edfffc76c3a6068d0c03f19543f4f5033127d5c90c9e94d2e79eb9e84c2b7c3ce5fd489e239d4891652219f920b2e0a98ff436204d4d6ed0b49ae35ae6e

  • SSDEEP

    24576:zT1oOgDGsBb5P9997vgRCC6E3LeDDQxClvjEovTMZn+npxz5R7y1vCrsK7NfYHlG:n2OizDPqCC6ESPQxCq+np55Vy1vCb7Nt

Score
7/10

Malware Config

Targets

    • Target

      dtszjysfz/大天使之剑夜涩辅助V3.9.exe

    • Size

      1.7MB

    • MD5

      c077c84b21e3afeb046e9fb4184b6c75

    • SHA1

      9c39ddcb36365351e14f46e44488b196bb552dc3

    • SHA256

      82c8644a5563d7fcc8e7e5e1c32284eb2c974776db28607e8a1fbb0782e83925

    • SHA512

      38adbabc3b034a1effefb5d5d577451eb5b663e58b24ea3a4937dc653bb3572b5dc8bc7d96add2a60f2984421a3b5e8a22b624210c10d1908b894df2a3436a48

    • SSDEEP

      24576:gU5PJj7sljH7npKFwPGVZ2R5HhLwId6Cg8IQGciM3P7orG3eftnkVzzq/KXFuA:gk7slxoEDIrhfVkVqkFu

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Target

      dtszjysfz/绿软基地.url

    • Size

      259B

    • MD5

      e803134068a09741b356ddd314c3eeb1

    • SHA1

      79278934b2e43048b6130c67303731e68e5548f9

    • SHA256

      cb1fe758826880c5ffe1e8f825ec96bb670fe13d9e3eee4654a01fe7e14a0291

    • SHA512

      fb00e95969518d9e79bd535f78e1bc369823d27b50ccf89b53fa3280dd3c2a533b05eb19203d37f5156652eed62fd922c8b8da7d4a96371f3d28e15005f888cc

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks