Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

lslt(BMFor...��.htm

windows7-x64

1

lslt(BMFor...��.htm

windows10-2004-x64

1

BMForum.exe

windows7-x64

1

BMForum.exe

windows10-2004-x64

1

lsmf.exe

windows7-x64

1

lsmf.exe

windows10-2004-x64

1

BMF.exe

windows7-x64

1

BMF.exe

windows10-2004-x64

1

cygwin1.dll

windows7-x64

3

cygwin1.dll

windows10-2004-x64

3

lslt(BMFor...um.exe

windows7-x64

1

lslt(BMFor...um.exe

windows10-2004-x64

1

lslt(BMFor...��.url

windows7-x64

1

lslt(BMFor...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6344c81963475c9e5551ca60d30bea06_JaffaCakes118

  • Size

    1.7MB

  • Sample

    240521-phcgyade6s

  • MD5

    6344c81963475c9e5551ca60d30bea06

  • SHA1

    db6cc0950d5c3a5c611c8b18f242bec1d162e65b

  • SHA256

    e6376ab5246a8874a469b2e4c10d0325f3e664b55f90980e14e192a9e4c3c0a3

  • SHA512

    9d38df9c33515572d1a48f61ce4309a8284b3489e63b42cb1e6fba4921b3e04726d9ba04a0da6c9bc68e430f41148950dcdb1ff386096c3f5542a72059d025b5

  • SSDEEP

    49152:2V6/u31MJ8ezp734+61r89CCpLRpm5EjyUe:i623xeFDvRRoEjyJ

Score
3/10

Malware Config

Targets

    • Target

      lslt(BMForum)ldly/lslt(BMForum)ldly/77169.org˵.htm

    • Size

      5KB

    • MD5

      9a97b36f3a6c7fd582e4cee14ff7e2fa

    • SHA1

      172b3b861ac280475ca78014cfb136ccabef40d4

    • SHA256

      198a65ea6c0cb0369edb10dce2e62379bed85fb82b5bba017686c91eee5e5511

    • SHA512

      a2c5d29ef579f53deaab56a70700d6892002a1be98348aea39c325a3d427695d768baa61b31ef2f1ca1c0ad5a0c3ab2f11999d841168e621812d5f2948051222

    • SSDEEP

      96:mQOQeRA2RWhwM6w6mheySgh/SnljQhhwQ0660X8bJhnYOPMj1zNMXlgIak:7X8A0VdIYehu2hwQpZ+JhnYOPMjxNMXf

    Score
    1/10
    behavioral1behavioral2

    • Target

      BMForum.exe

    • Size

      213KB

    • MD5

      02dbe3d4ed5863c66a5932f7b8cecc44

    • SHA1

      14c1f22d023201cc558a6e84a785bd5434e42ad8

    • SHA256

      658575abf0df5e47e552b2a3d5fd7ddede1610dbade020b0e44f765b445adbc6

    • SHA512

      4f3eab803dc7c6d436e6ba7aa898e05e77a8e0e65c83a383910487abc21d1f08314754d24ac91ca52235c64562b37d62ac7a26bc2936c30c7dab22322a110117

    • SSDEEP

      6144:7sxe5vwh1eWCxgwcrErCpuxvfx+Zhuzfj69DBsKAW:7zvM1vwcjo30Zh4L69DaM

    Score
    1/10
    behavioral3behavioral4

    • Target

      lsmf.exe

    • Size

      127KB

    • MD5

      96811c9e30e744f9ed667cab89264aef

    • SHA1

      3ad47e5e9e0054a2867f3faba61ec097344c2f9d

    • SHA256

      08acd9de9ccbf3c4d5fd8b410579bef835175ca1cffb396adfa7b03dc62b8a3f

    • SHA512

      9de93841505b2d4728542c964e94a53e6b7a0344c6e624a3d35b29ffec5455b848be0cd32bc13836317df4b14d12cda5b3e4d76182c2be187e0dda3ef3565664

    • SSDEEP

      3072:IFe0g3AGGwpUuteJxmzz0OsxHN7GnWYSVOUhEAV9aq2H:ubIte4QOQCnvqEAPA

    Score
    1/10
    behavioral5behavioral6

    • Target

      BMF.exe

    • Size

      22KB

    • MD5

      70a61a711113f673bf8349d01ffbe6be

    • SHA1

      e7f771b349d8cdd51e015bceb34317dac947756a

    • SHA256

      5f2418afecede066b1ae30a16bb55954499e04378c56bb2bfb99aa68e0fd7419

    • SHA512

      2402eaf882ca06508abf494df6078b398afea5b2613c87543bb51aa8c5e1d2ba696770b8a42b549f555e351f7931acec7b6f3293c4355e35722335475666b9cd

    • SSDEEP

      384:u/DA+FuIF/dOvmwszF/FNFzFzFyFwF1FwsFjnFN6FcF0gvwsf2aoCrRqC:uDXPzF/FNFzFzFyFwF1FJjnFN6FcF0YB

    Score
    1/10
    behavioral7behavioral8

    • Target

      cygwin1.dll

    • Size

      1.2MB

    • MD5

      704a37ecf297d83c92521d6b5972e93f

    • SHA1

      12fbc47ce4ea836a9dcb743893a419f15c264bc1

    • SHA256

      c0e27ae6a7b7106da5db889980a17fe55ea515ebfb3d4c03ce1e26d51bf9c73e

    • SHA512

      64c19cc36b083061ada0aab2ed6fb8f49eb190f403592da7dcbd74100f90776c6091698df0415348b5deddfe3956e11159eb8d5afa5cb97cb1baa2050d40b6fd

    • SSDEEP

      24576:wEwxAvt54cwaFWjVNEMUJHleueRhj0pUMITbOl8LgnS4fX/C+Xtf1mYPTRI:Ni4tCcwKw/tgH6Rhj0VibdLZ0/C+Xjmx

    Score
    3/10
    behavioral10behavioral9

    • Target

      lslt(BMForum)ldly/lslt(BMForum)ldly/BMForum.exe

    • Size

      935KB

    • MD5

      0bf40cc323cea16b5016820581da9f8b

    • SHA1

      4e102b8c8457f8e0e9335b0d65bdda7cbd337659

    • SHA256

      fcc51b1806ce8b2917be7d82c1ab2b634393f3947f4347a600e94788b9da6ee6

    • SHA512

      a336ffffa200556abc467689b92f278dbce06045baf42dd121aa1bdcfcc3e7c1adefa35702685d4c2d0d0d70bf278c370c9c3888b3daa0c502851747224c6d1d

    • SSDEEP

      24576:kdOQuDQNWxB5gKhmOXrdHJ+O8r3WZ+BsdV5lGee3/49ed:kddShNmGrF18r3WZXdtmL

    Score
    1/10
    behavioral11behavioral12

    • Target

      lslt(BMForum)ldly/lslt(BMForum)ldly/ĺڿͬ.url

    • Size

      76B

    • MD5

      05ed0537b8052c33a9096c68b4d1d905

    • SHA1

      19fccec1f302e67908f386ac239d31e2edd7b820

    • SHA256

      0aeee0ba3eac8e4787109250c895aa0cfbce84416acdec154c33129cb65a56e9

    • SHA512

      d633e68263362b027c53df7a3d463ab6db8361702f718670f1717cea6785f4d7a3abcae77d8bb27b40221ef47c54b4ddead00c690468b9339235848948071127

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks