Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

recorder.exe

windows7-x64

7

recorder.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$SYSDIR/$D...þ.url

windows7-x64

6

$SYSDIR/$D...þ.url

windows10-2004-x64

3

$SYSDIR/MMUTIL32.dll

windows7-x64

1

$SYSDIR/MMUTIL32.dll

windows10-2004-x64

1

$SYSDIR/lame_enc.dll

windows7-x64

3

$SYSDIR/lame_enc.dll

windows10-2004-x64

3

Uninstall.exe

windows7-x64

7

Uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

order.url

windows7-x64

6

order.url

windows10-2004-x64

3

recorder.dll

windows7-x64

1

recorder.dll

windows10-2004-x64

1

recorder.exe

windows7-x64

1

recorder.exe

windows10-2004-x64

1

web.url

windows7-x64

6

web.url

windows10-2004-x64

3

yun.url

windows7-x64

6

yun.url

windows10-2004-x64

3

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    05806a7eeb83e5f3f3b16d7c9d2810fa_JaffaCakes118

  • Size

    870KB

  • Sample

    240620-ndwjksydql

  • MD5

    05806a7eeb83e5f3f3b16d7c9d2810fa

  • SHA1

    780be398d9ecb3580372914b53998faa14cf4aa5

  • SHA256

    da96ab9066c82c4c0350c25d4dc0486472c9ab620dc353768ed31846bef60dd7

  • SHA512

    604dbe1d9d808bc433ca0046e23e87b0dcdf1f302301ec2b6badd737a5387ab0b6bbd381824d6ca5d1d53858e8a2e6006101a62f5e34a8c2ce89c6051fdcb106

  • SSDEEP

    24576:da8Bj8KJJStRDaSWBEhmR4vfRHGLvUxHcDbgOHvcg:1j8vtRF3XRHGDvMgvcg

Score
7/10
aspackv2evasiontrojan

Malware Config

Targets

    • Target

      recorder.exe

    • Size

      885KB

    • MD5

      4b13c15334fa2ba7018979c37627f229

    • SHA1

      dfd66519c923a037378f505523ca68a5c2487a4e

    • SHA256

      831b5151e5503a76c62ca395d50bf5a7ae188e7c4a548724d408c06d3d965a9a

    • SHA512

      56c97a1696b6523c465a8c47d9802cee8ff1ff64ae37684c081b9c16ff3ffeecdc0053f07562aaa812be6673daecf28514eb4d058954f9525f9223d013842d4b

    • SSDEEP

      24576:kJ+6vNXJ09mu93/16493NmrXTMoQpcarLbJdxQpGzUOQx:kFXi9D9N6YmXkrLbJQpLO+

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c17103ae9072a06da581dec998343fc1

    • SHA1

      b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

    • SHA256

      dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

    • SHA512

      d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      9KB

    • MD5

      c10e04dd4ad4277d5adc951bb331c777

    • SHA1

      b1e30808198a3ae6d6d1cca62df8893dc2a7ad43

    • SHA256

      e31ad6c6e82e603378cb6b80e67d0e0dcd9cf384e1199ac5a65cb4935680021a

    • SHA512

      853a5564bf751d40484ea482444c6958457cb4a17fb973cf870f03f201b8b2643be41bccde00f6b2026dc0c3d113e6481b0dc4c7b0f3ae7966d38c92c6b5862e

    • SSDEEP

      96:hBABCcnl5TKhkfLxSslykcxM2DjDf3GE+Xv8Xav+Yx4VndY7ndS27gA:h6n+0SAfRE+/8ZYxMdqn420

    Score
    3/10
    behavioral5behavioral6

    • Target

      $SYSDIR/$DESKTOP/×ϵçÈí¼þ.url

    • Size

      202B

    • MD5

      73509b28a5a218ad6ce8a6abf930c960

    • SHA1

      28034b559c85989b98b88e0ebbf345eb61a7861d

    • SHA256

      7e631e598069cdadf5353a314e5f14543f97b85cb1dd08efc0283cebdbb24872

    • SHA512

      e1b215e5d2d8f6e7eec201664fe69550fe7843497a0aca43f155931201fb5eabd7bc83efd1a1fc0cf68d22467da337cd80d91d6b6739285e0cdb13be55852d18

    Score
    6/10
    evasiontrojan
    behavioral7behavioral8

    • Target

      $SYSDIR/MMUTIL32.DLL

    • Size

      61KB

    • MD5

      669874d162286ccaa8a003cc1dee5b99

    • SHA1

      c3d0f9f0d778a824b8cd7e81c46733d7a2f4d7bc

    • SHA256

      41974aedfd7b9ec8be6f734e84aa327d55a2aba02cf31d89edd4440bc933c44c

    • SHA512

      4f4d4a58f65309d0cdd82749d4081cccec194581a28b1da6b80e03e20da4360b45abaceba93c151529b837b339ba029b803cbf617b0d364c2b09133a4d120b0d

    • SSDEEP

      768:ijL4LqkIZg1+3lOwvA+0XYzd88Z+sNV5nFCHW3mGToHut9PjvnhuLKEDRzmkMUnp:i4LqHzV0X18jNV7TcHu3QdPMUVMo

    Score
    1/10
    behavioral10behavioral9

    • Target

      $SYSDIR/lame_enc.dll

    • Size

      232KB

    • MD5

      aced3cc66b2940055763837783597c81

    • SHA1

      47c2fd4e5666ec463c3a1b035f44ffe54ed596af

    • SHA256

      54ec306be159a8626f5b80350a3ef2d950f72b85d068bd1db3abf03a04109de0

    • SHA512

      6e107bdb6ef20064fc825191db2f96a9434ceeb30d6a4f9bf54308cac28a324752a7a36e9ca2cb520a5615ef0ff7cc15ee49383bc17a48bf0761b4c5097978d3

    • SSDEEP

      6144:/ntXY/ZE8glYQz0bkDCgdXug4amHUaaZZZZZYRcNj:/ntCZdg2Vb2d/7aXamc

    Score
    3/10
    behavioral11behavioral12

    • Target

      Uninstall.exe

    • Size

      47KB

    • MD5

      3879c294807a6bce17bf898c20a4050a

    • SHA1

      6ca837435d7f023c04d8d58e1ee91cc84a04c073

    • SHA256

      c748a87b14b5d024ac857805422a904c3f2b1d1e734d61ac34d0328a30b94008

    • SHA512

      1b71a9711670cef99ca48ef2c206f0a504600f03688a5a8c1c147c127b89cc80d7680223be921cc2feef2911727b3b137db9be8736475cd088d3d9d00cbc70f7

    • SSDEEP

      768:so+q3yXQptuh9G+5HjQ13PoTSIato8vwJjXO+tXJLiEV9aIAGQuodDke9Kni/c:sbq3+uta99Hj25XvwLXJLikADuodDk4+

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral13behavioral14

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c17103ae9072a06da581dec998343fc1

    • SHA1

      b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

    • SHA256

      dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

    • SHA512

      d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral15behavioral16

    • Target

      help.chm

    • Size

      42KB

    • MD5

      11c635fee6a7e8507affd6ff7e3c8ec9

    • SHA1

      1f000e0715a1e48fff5ba8a8284e4f9a7c1da3ca

    • SHA256

      766108e11e3bde6be10271f2e31f290726a2caf731468af81d841723a1c6e42a

    • SHA512

      b76ca43b1a6ca48e5e95b96096d286843af4e734123ade5225c6efe51303fb345285cb5e34e4077de52e5b4940f88bfc5d19e0504d7fd81cf7cd2fb0a08ef3e6

    • SSDEEP

      768:NFxUyOQNnLIJQWiNgsJHYVFHoFa6QNk8++eQqs1BpjNSsW:NFxUyzLIaWRspYvo/8r4s1bhi

    Score
    1/10
    behavioral17behavioral18

    • Target

      order.url

    • Size

      278B

    • MD5

      3f969904a1066b788b1c6566257985fc

    • SHA1

      293b6c0106a15c635c12f1c9d452f3f1b2d7c864

    • SHA256

      433e7f912c4e1f6ca500894c5d5dc9d338153261f89e89337f9227842596a3cc

    • SHA512

      82ab2e331342c346f645c7b56ea7ebf7b78c46e8cfadd5fa9db0cc86383a775998ccb2da923c46f5b769c90aef9ae72f6174b9e5bce8dfa1d7e564b4075e30dc

    Score
    6/10
    evasiontrojan
    behavioral19behavioral20

    • Target

      recorder.dll

    • Size

      346B

    • MD5

      1a42184bb41d2677acf2dec529610c4f

    • SHA1

      98f82a50dec3e4f2d671067f8a62f725be54f013

    • SHA256

      4f39b2e8ecc2e31f8c3055cc433dcb40c9b8439c93f80902736feaea0b18a673

    • SHA512

      4cd8dad0f82ecdb45a9b99374b8efd942345c1e950f06a66afb0afc61a6f104a55cbeff85eb61c5051421fa5f433a59a97af40e75e4a950536353d1a422fd623

    Score
    1/10
    behavioral21behavioral22

    • Target

      recorder.exe

    • Size

      664KB

    • MD5

      df95dbc97375697f3cfba9bc4a82e302

    • SHA1

      a05ee744bb754913ca4e6c9f2a0d3f1e5ea5bd9b

    • SHA256

      ce3c993831383a16847b0dac395e768adebce5a7e4d87271554727654fd41b1e

    • SHA512

      2588eedf371b5c458666a6fff2652ecd38675f8a08c87970081de6128bb6c49760a0f6e53c5f0e2ebb47b4881c7f3b2c91cbc12156c10240e13f1309fba464c3

    • SSDEEP

      12288:tHlaNJiy8HtR4gmuwpR4JVekXEnZQzKY5uWUapAuJhjue7Pd9YW/EW:tH43iRX0DaT0Z0KYUwGyhjFn

    Score
    1/10
    behavioral23behavioral24

    • Target

      web.url

    • Size

      202B

    • MD5

      73509b28a5a218ad6ce8a6abf930c960

    • SHA1

      28034b559c85989b98b88e0ebbf345eb61a7861d

    • SHA256

      7e631e598069cdadf5353a314e5f14543f97b85cb1dd08efc0283cebdbb24872

    • SHA512

      e1b215e5d2d8f6e7eec201664fe69550fe7843497a0aca43f155931201fb5eabd7bc83efd1a1fc0cf68d22467da337cd80d91d6b6739285e0cdb13be55852d18

    Score
    6/10
    evasiontrojan
    behavioral25behavioral26

    • Target

      yun.url

    • Size

      278B

    • MD5

      3f969904a1066b788b1c6566257985fc

    • SHA1

      293b6c0106a15c635c12f1c9d452f3f1b2d7c864

    • SHA256

      433e7f912c4e1f6ca500894c5d5dc9d338153261f89e89337f9227842596a3cc

    • SHA512

      82ab2e331342c346f645c7b56ea7ebf7b78c46e8cfadd5fa9db0cc86383a775998ccb2da923c46f5b769c90aef9ae72f6174b9e5bce8dfa1d7e564b4075e30dc

    Score
    6/10
    evasiontrojan
    behavioral27behavioral28

    • Target

      新云软件.url

    • Size

      133B

    • MD5

      4f0017b3b346bd0626f0c3b915e6e734

    • SHA1

      823bf3ff9e16cd636c9dc0dc690d6a586fcbfe92

    • SHA256

      df65af1fc1e09f6effbde7e0ef1cb64d6caeef1f62b0e6467821efa032533678

    • SHA512

      0f5eb5024cf6a0323f7998d419995a707c48de917a5899a185369e6acfeb17c09ffa03f7d110adc87b8de20b7d4bf30d50c72479bfb18614d2e21cbe169dc5a6

    Score
    1/10
    behavioral29behavioral30

MITRE ATT&CK Enterprise v15

Tasks