Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

QQkjmfmhkl...ne.exe

windows7-x64

7

QQkjmfmhkl...ne.exe

windows10-2004-x64

7

QQkjmfmhkl...in.dll

windows7-x64

7

QQkjmfmhkl...in.dll

windows10-2004-x64

7

QQkjmfmhkl...te.dll

windows7-x64

3

QQkjmfmhkl...te.dll

windows10-2004-x64

3

QQkjmfmhkl...60.dll

windows7-x64

1

QQkjmfmhkl...60.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    84ebc18c975846f904505ad2aa00b8f6_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240530-v5hkcsgd23

  • MD5

    84ebc18c975846f904505ad2aa00b8f6

  • SHA1

    71a271ff1c41e5bd4298c7d4046425f1c8dab3d7

  • SHA256

    30fe745e9fb94f50cdf702f28218bbcd105db9e341a7f78ac9811a9fbda628f3

  • SHA512

    a1439d51ea0789191e410f0411107389822c99506e1436bdb064730c231c8a88f3707353beec2635fd98bc8bd42d6f534e47c19d4709cbc79d8ea50a8afa74e2

  • SSDEEP

    24576:+7FKE3KzFM9+w2c04J54oNQ+xXMfDjgbUAUuAOr1vE9I/IjVO85I7vGfxbdeurQ:+7FT91K40o/KfDjDAUu9r1v4I/0t5ITH

Score
7/10
upx

Malware Config

Targets

    • Target

      QQkjmfmhklq/QQ空间免费美化克隆器/QQZone.exe

    • Size

      492KB

    • MD5

      44b60b118a443a2e55b4b5885f52dc92

    • SHA1

      1f91cc326cca4f2090da36214153cdb6285a0568

    • SHA256

      67f7c1f5317570221842f737317de49af4b04638dd5c2c4ea2e0c0a54ef17149

    • SHA512

      4922beea0e2abbfc25b0268cf4f28e45b71f7ba3e56038ac2621e5dcda4ba4ee5041d573a55334db2c26376af1ed9cb25a460bfe3192b0a64db51d4e02c6a2ea

    • SSDEEP

      6144:aN3vkgRRC86V+EMcKC2oJoTKeCaeQ3rQtSG79eOBLNnRat0cBD8sHbOhLv/ULYaT:y/NRCIen7wOHRat0EDfbOhz/SusQqoS

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      QQkjmfmhklq/QQ空间免费美化克隆器/Skin.dll

    • Size

      85KB

    • MD5

      a5bb013c132f1fbbced475a7720c8727

    • SHA1

      68b100ca811286afb1176dadcf482b34e8c34a9e

    • SHA256

      e5fab9187248503ce972e9f6e929512ec5673aa112c62de632f610c438dd7e57

    • SHA512

      5d8274c43c8086e7bfe604a0d52606c0d804c5c3add3fec6315fdeb1c038127e649f9390ec978a1c1f40aaf41922c6ea55ab3761b437be6128118c220e58dfcf

    • SSDEEP

      1536:obZvHATuOMDswejV9pYaN29BSSWfJLv/GBLG4xmha6wezjrcQynouy88:8FAL+/oX5hLv/GBLYa6Lj4Qqout8

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      QQkjmfmhklq/QQ空间免费美化克隆器/Update.dll

    • Size

      195KB

    • MD5

      08695e17c85de603609187464915b5c6

    • SHA1

      8f9ef5ec3415ea754117314241f34728ecebc78b

    • SHA256

      934d516b8b86f1b8f75e349378bf8a3077405b841c69eb6a0c1fff8502e07c5c

    • SHA512

      d8e2d136cab991c68834856f886761cd75ec257900a8201904dd33e58aad4fbfca026c2b91055ffce58ebbae3a20d9b8e03e7cdca22ed19628a77e6c4a330fe2

    • SSDEEP

      3072:gTEmHeQOTwvrHwPVSGkK9/W+WloA7suALs7cPNwysge6fpapXeNcXZDDY:RaeQ3rQtSG79eOBLNnRat0cBDY

    Score
    3/10
    behavioral5behavioral6

    • Target

      QQkjmfmhklq/QQ空间免费美化克隆器/msvbvm60.dll

    • Size

      1.3MB

    • MD5

      efcf843edd837c5ab013e53fe6d03993

    • SHA1

      29b9d05786b2e27d7c7b08a5a7c6291da53bd4a7

    • SHA256

      bec16f80e024ac2b182b46415872dbde1a1da553e850a2228a72dec4e05ed64b

    • SHA512

      21fdad4e1a2663b376abccf30f7277d9df3f6cafc02eafc5f841fa3d8f66e943a218ade67a11a1631cd466639c391174d3359d59fa314e74ee9155e01229859b

    • SSDEEP

      24576:1TGs6JlHZLKCd6oQwznJyXpWIqaqufQrRhLsbRmUSi8zlmZYnDg+:1TrojznJyXpWISufQrRhLBUSiWlFM+

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks