Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

CORE10k.exe

windows7-x64

7

CORE10k.exe

windows10-2004-x64

7

data/program1.exe

windows7-x64

7

data/program1.exe

windows10-2004-x64

7

data/zip.dll

windows7-x64

1

data/zip.dll

windows10-2004-x64

3

keygen.exe

windows7-x64

7

keygen.exe

windows10-2004-x64

7

访问零�...��.url

windows7-x64

1

访问零�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    937a2a61601ca976368ab7a34ed6000c_JaffaCakes118

  • Size

    498KB

  • Sample

    240604-dtpqvsca54

  • MD5

    937a2a61601ca976368ab7a34ed6000c

  • SHA1

    687ed1a27b12e7f7386e0ca11694b71963120540

  • SHA256

    8a1ab068b00c8ed21eb85b683593efea720da995ab0bb1382914eb8738019aed

  • SHA512

    fbcd3b876c805887b283d3c054f39a6ebffccffa5eb0a0f56e22e450e2492e33a8d47aff2e982a7b8e7c6d11f30d2280b092e91c0bea08d72d3fb4b39a2614fb

  • SSDEEP

    12288:3XW2PC9CD55ACM1JBBQk1r5xrQv6W32nCiwP64IRrqn2pJ7:5QCMC+JBBQkhQCW3qwdy7

Score
7/10
upx

Malware Config

Targets

    • Target

      CORE10k.EXE

    • Size

      134KB

    • MD5

      d581068e84510083ddea45e821ebde36

    • SHA1

      beebba90686dafbd91dbb17ab37a9442ea9c5521

    • SHA256

      fa04f7f08277b74677628a224a096d4b9fe4cafb7eff9f9d92e2ad776085959d

    • SHA512

      aac289c9d7733da47fcd7c25062963a4ce8531fd011479c950c5ee5bada7dba6221cb30a0950ce8f3ee2cc9bbac8ecfedbf9947c18a889589e39473d9b6e98fa

    • SSDEEP

      3072:quH/RGfpO7StR997TALihAOJiKVa6vs86Vn:LfwpCkxDa609n

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      data/program1.dat

    • Size

      212KB

    • MD5

      f330aa9230a65eb0482ff74c084d73e2

    • SHA1

      df89f5f51d4941fb2d23e07583ca71aa0ca78248

    • SHA256

      1c25b23b78586d4a66aef9950ea00235663e333f6f619c35896ad580e794ec34

    • SHA512

      8841422bb32160f6dfc71bc1d1690ee5b231303e7735872c4ca8dd66d503ca3e719d74b2bcd8acb319ae7c39b288773f5bab7ee80345da76c63ff282d8967778

    • SSDEEP

      6144:E5iCnQtqr0R6P0v/kN73SprdrGuNfsx8ly0P619z/IECFm:E5iCQM04P6kz8rF/e9btCY

    Score
    7/10

    • Loads dropped DLL

    behavioral3behavioral4

    • Target

      data/zip.dll

    • Size

      120KB

    • MD5

      f483ca3411e7f5b278df6dabd1dfa2ea

    • SHA1

      9fe776f8eb36b7aada0d08cb7fc8d7a0371c69ef

    • SHA256

      3af8886e8f36c34cde502bafd06e967a7769f910f603a88cb91a9833f928a6c9

    • SHA512

      d229dcd16b8e91fdadee68d5e42a79b1447091c6480bfb4aa0761c5c9035404991383dd7999ee431a0610aa716745ec28e221c115baf022252f8f20512d9d4f6

    • SSDEEP

      3072:YOltoyFOxHTKiM+Kh+GBFOQMrTBfC4NS5S:IyFOxHTKf+KhFB0QMrTBq4D

    Score
    3/10
    behavioral5behavioral6

    • Target

      keygen.exe

    • Size

      228KB

    • MD5

      cf067a42232fd3ccabd7d7701a1f4ceb

    • SHA1

      67448758d281a2a76a157e7457b6a9745a230e6b

    • SHA256

      c6cef3d9ce6cad8aae5927416b0b3e13c3830ca6f2e0ca74ee49bf2283f42087

    • SHA512

      57255dfeae555e1ec7636341286f7b5112336fdd5e32de4a0632ef74a2eee209836fb1de6b44885b908b4f60e31e47f0b10a2704e6b54360189331e1712e568a

    • SSDEEP

      6144:wIzJc1Fro0Xrhor1Ok4xbU5B1KP/o2RaTi8k+jsk4Gunb:wec1W0bhK1t4xYJKA8G+

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral7behavioral8

    • Target

      访问零度软件园获取更多资源.url

    • Size

      149B

    • MD5

      dd39ff171e2d992c0f035f8c4aee21f7

    • SHA1

      0943c4d8bf261c2fa01aa16808f8a14a64fb1a42

    • SHA256

      110c0dbe0be54d83e78aa84a70ebc601d2e47be67ca5817bab604ab86600038f

    • SHA512

      402b5977aae56f0898248442d2f09e3d34b50ead925ab2706f07e0e83e18d8f415101ea4e5cb76b74580b26c3ecd4cf911e4d9ebff1b011c42c65ed214f6ba0d

    Score
    1/10
    behavioral10behavioral9

MITRE ATT&CK Matrix

Tasks