Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    antares optimizor.zip

  • Size

    503KB

  • Sample

    240626-v73cjsvdmc

  • MD5

    96a366917a48ffcc1740695598f030e9

  • SHA1

    0766d54f424f378cc5db6c9b1dcb8f69cf144eac

  • SHA256

    445bc69abbd0eba7c5c4092561043eb80cde9ce361d970782837431f23460e87

  • SHA512

    de1fc0452d0a29002436e7bc92f55a2096ae701083e986f3ba91d34ed4d671c3746b611093cb6635aa9b12e2ad43ae3c937cbc92c2b0cd5b52ca5cadaa1008e3

  • SSDEEP

    12288:j6wnDRR/j0qCK85nbbUlPmUl+9H2AttKOIuz:j6wVR/oqA0PwMgKO1z

Malware Config

Targets

    • Target

      antares optimizor.zip

    • Size

      503KB

    • MD5

      96a366917a48ffcc1740695598f030e9

    • SHA1

      0766d54f424f378cc5db6c9b1dcb8f69cf144eac

    • SHA256

      445bc69abbd0eba7c5c4092561043eb80cde9ce361d970782837431f23460e87

    • SHA512

      de1fc0452d0a29002436e7bc92f55a2096ae701083e986f3ba91d34ed4d671c3746b611093cb6635aa9b12e2ad43ae3c937cbc92c2b0cd5b52ca5cadaa1008e3

    • SSDEEP

      12288:j6wnDRR/j0qCK85nbbUlPmUl+9H2AttKOIuz:j6wVR/oqA0PwMgKO1z

    Score
    1/10
    • Target

      fps boost tweak/1 Registry Basics/Disable Game DVR.reg

    • Size

      479B

    • MD5

      bbafd87dd97017d9128d3bd31aca43cd

    • SHA1

      aa5add74a847799cce1395c23ccb8ee9af8604c9

    • SHA256

      21217f4179fc49e53cf1a10004948e8c56f374683733acbe80f1f48959c0d063

    • SHA512

      a4d6d16016d98a5a61c75116abdfbda644e93315fe8556efd64739cb0934ddfba89a777bdd7dce228d7800fc1b2123fbdddf222d8043f3b9e1deb51cb732a9b2

    Score
    1/10
    • Target

      fps boost tweak/1 Registry Basics/Disable Limited User Account Control.reg

    • Size

      173B

    • MD5

      da478742d4d3cc52bc76f0f72265b519

    • SHA1

      dc733c37a3232a556dfd6c948bfa6d05b864855a

    • SHA256

      cad56f0633af3239f4740c1a740306fe60005d449105841ff3e5c1dd1667e008

    • SHA512

      1371b489791e3a03f1323656890a7fd55d0b9e825b387b369feec5b9c8e43cbfb39dbbc1b8d3744fb48a02efa5bf6904051dc64a34c3759a3706fb6c6c53ba9c

    Score
    10/10
    • Target

      fps boost tweak/1 Registry Basics/Disable Power Throttling.reg

    • Size

      179B

    • MD5

      a4b8e05c0b078d978132a2851fbedc1c

    • SHA1

      0e772f51682ecf2201ec1165ca22d64c34dec797

    • SHA256

      8ab5131a597fa574cd24c2a47d62bbef233aefe7ff1350cf4ff62019ae5cfeb0

    • SHA512

      d59c89b3b7618a45c81abb7f66be4f304b413e2902cb3d27ec7230ba22778367a2e45d63ba8ce6c7de58d3161cc4d37bf3cd175813cede8b84dc9c572007e377

    Score
    1/10
    • Target

      fps boost tweak/1 Registry Basics/Disable Spectre & Meltdown Protection.reg

    • Size

      486B

    • MD5

      61b11fb65a3dfe28030f21f4a2a7f4ca

    • SHA1

      13520a7f1b97bab3f5d19281f1894eddece9a8a4

    • SHA256

      73ca8bc65f393c4ccd931a9186919197c3b126a327bccb399fbdf2d40cd72c33

    • SHA512

      d8c9fe311c3933967c932300de10cef96895f4803538dda07d7f30faa4a18ca8cdd2a3d834404cf3ff51ad381899ad0e1ec1c67f802651581bdc89b6d1b83bba

    Score
    1/10
    • Target

      fps boost tweak/1 Registry Basics/Disable Transparency.reg

    • Size

      184B

    • MD5

      47f70ecd2697c2698372e2fcd674c244

    • SHA1

      4eca0b8ebc10d2f70f43f96fddeb5c90897ab1b9

    • SHA256

      f4ef158e57711412ea679c880a8cb2ca04470e01eb3e0daf82c4db7660094748

    • SHA512

      9426fa1b3498e7cbf125446f844bcefb29098c07e48b4ea7951211a2ef903b830c349a8196a206493507b6f662c7079dfb29be42d066fcdbdc245528980425cd

    Score
    1/10
    • Target

      fps boost tweak/1 Registry Basics/READ ME.txt

    • Size

      81B

    • MD5

      4e90a4b9131f7adfc3c34aa9d077b273

    • SHA1

      c430d08b1bb7ce33d100796f0dde9ab52bfcd8af

    • SHA256

      420a408012dd15d143ba90e5536ae91f123149618c689cc48e2180253f9612be

    • SHA512

      ea2b492f4dcc18185703613688c7d8e9a3df64702a5c8962477f152ce0039585a6eb960b54fd575f31939bd3f4568d12d52c1a78d27ec0cd50c15c7115628eb1

    Score
    3/10
    • Target

      fps boost tweak/2 Cleanup/Delete Log Files.cmd

    • Size

      91B

    • MD5

      0b6a1d35ec3be54b5702f217188a776f

    • SHA1

      97a7d8a0c7e841dbe8b2d11c2ab594b2fb827b87

    • SHA256

      28b9645502ddc1536fcc243ba7cb537d45aba04698c3ed8acff3c0f30afbe5e1

    • SHA512

      1a934f0467e3f05272a5ea4c50a7863e11c7e7c0526f15922f8d2074a9c99faa93a8a56f1484328969cdd5fbb5d2a49ca7e2b1581a68c14334488a6d887a212b

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Target

      fps boost tweak/2 Cleanup/Delete Temporary Files.cmd

    • Size

      273B

    • MD5

      2ffb5f1c8e8e17ee9b40108f82c6bdab

    • SHA1

      47e27a22fcdfb68e9b1f6a460fe6ddc33e9a3a34

    • SHA256

      b75c09af165c8e42d780a00142451b6f5745cafab60f0957ca018c17b878a703

    • SHA512

      4410f3a2ca03ca59bd92aa18792d2523c0fe04a033758266090cf140c1e4830d28aba43fd549513f3c81e91e5cc984dbb8da8811e4d8fb9a46df1df1366b8e92

    Score
    7/10
    • Target

      fps boost tweak/2 Cleanup/Delete Update Cache.cmd

    • Size

      173B

    • MD5

      28c41cf9dbfa80376b75bfac670cbc4f

    • SHA1

      8d6c4ee85b9bb814252f96029cb541948c17067b

    • SHA256

      a135f1e1152a64cf79e0c6c4a7ad27b8a94d07f4655567bd9dc27430e3d33ff7

    • SHA512

      acd66c78af39a3d238044ebbffbb6cc57e811bb5e0ac0d9be7f634db1e16486459f84a88e4e323c6048db2a6a0c560f8ea0f53a35a597e23f2a24b17cb033cc3

    Score
    1/10
    • Target

      fps boost tweak/2 Cleanup/Disk Clean-Up.lnk

    • Size

      1KB

    • MD5

      c55847413ad9bc79a6e319166bf5430b

    • SHA1

      b1d8963a0c891e17af115e9c785ea26893c7106f

    • SHA256

      082ad7940bd4002167eb58f55d8bcd073d2f72b29d83ff64c752feeeaa45b881

    • SHA512

      386bb17894a8cd3ee0e9d5813cd29560ecf263e5e9717f11cad0636ae4979815acad235330e4f3e8ece9b121a3b5caa239ba754d1323bb1a81a28b5c6a1d5cc6

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    • Target

      fps boost tweak/3 Power Plan/1 Import tairkyu Power Plan.cmd

    • Size

      196B

    • MD5

      aabd8d1f2d2a2bc7a0ff009f41d2aed8

    • SHA1

      20959a0cb07a687b7ea8a237145910ef0133e89d

    • SHA256

      8180ec52265df6cec96c654385a20ef71933b08d362e8499b58a1f9c20e8a648

    • SHA512

      21875c8dc24733f387f97876017c05a83e9f93c9913e9d4a453a871ade81fec17e4a1b3da871c56e3cfbeb4a0bcf79019e8d30cd7e018bd070dd22b8b0ba10ec

    Score
    6/10
    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

    • Target

      fps boost tweak/3 Power Plan/2 Delete Other Power Plans.cmd

    • Size

      237B

    • MD5

      4f5e9d985ba5e71a95b3245d0155dbcb

    • SHA1

      e89303b70425a043e83bce48ce793ad55ce1e38f

    • SHA256

      0203f29948d95cb2057e5dda1a980f218437fb3f54082d17c23b70b95616d80f

    • SHA512

      37c6da4dbbe327489292240ed9260f27e4c2e0678b97a82a808ead7e12a9ec2133efe3085eda60a2b5000191dcefd5b161f1cce3e8a56a02082628b4409804f3

    Score
    6/10
    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

    • Target

      fps boost tweak/3 Power Plan/Power Plans.lnk

    • Size

      1KB

    • MD5

      77a7961fc8ad9e8a4386f7137e74f5b3

    • SHA1

      f4fdd9751ab0bb9cee172c872dea21ef94769574

    • SHA256

      b4d5ab63e1da92746100e1a7addcf62d9ac0966d65e4ae71d95e56c65a3739a5

    • SHA512

      252c013319db528dee981df0640c677499bfa900c072ae5524a7d24a46f2ab8205a6edc885cd982078d735496badf96f8349639eedadf692402b9ec885f438a2

    Score
    3/10
    • Target

      fps boost tweak/3 Power Plan/tairkyu_s Power Plan.pow

    • Size

      20KB

    • MD5

      d6add010e5ec95ac4e95ee27fbec4575

    • SHA1

      802d16bea5428bd514e9820f2a1245738d5e3030

    • SHA256

      d3e68a1af9bbb07254b614395a1f6c5dcb07a36d0bbdbab6fe5186bafd27af71

    • SHA512

      5aa3d5ca8f5780d3e3ac8400f3189c51a240edb357d6488eec492ba91fbd7a92d82d53c4bffd470b696f5c63bc5b41de5595c2b2d2b315f23a9e867d4ee12a24

    • SSDEEP

      96:pAZT+Vq4trlFFOIdfKU57cAnZnn8Ho+ogffoFtbnIDuoq3aH6Lk:pfQ4trlF8IdfKU9fn8HoOabIqAS

    Score
    3/10
    • Target

      fps boost tweak/4 Programs/Adwcleaner.url

    • Size

      140B

    • MD5

      6bfab71f3f23d00c106fd5e271968d29

    • SHA1

      4b7519f2a4526e6a6f63b738a078552a5b5df255

    • SHA256

      e6643b4bcb67223205b7efffbad06e686f31a891706153fb1cd0d3e491a6a3b0

    • SHA512

      1b3c11795cdcd6b8119cf0e8a6567aa409c87789efd03edf5d776864ad983d4ddf9546a29eb90869abe812ed0bf3809e9587300e84933a6af87f233d6bc3b25a

    Score
    1/10
    • Target

      fps boost tweak/4 Programs/AutoRuns.exe

    • Size

      837KB

    • MD5

      eac74ff3a98f5716dc938372f0ef4811

    • SHA1

      e06ee67fb99c5a65ca80c50aee395ae233d5d9e0

    • SHA256

      fc67dc529e812a6b1a29368aa9219ebdd0d523f429ccd5cc1161b9ac0d6b8ef9

    • SHA512

      a7e734a61a474cb027f447339d348764f2c987be1f0ab177480c3874352865367eec46deed1c60585ebaf1287c0d2a24688d22d82e653f675cfa03e47071fc65

    • SSDEEP

      12288:vbTE7kTjDx5n/8sJQhTdevBxOWmygNwerNd:jTVfnOhTdGiIeH

    Score
    1/10
    • Target

      fps boost tweak/5 GPUs Tweaks/NVIDIA/Base Profile.nip

    • Size

      5KB

    • MD5

      da8cc6e7b014f567296d20976f10529f

    • SHA1

      70ce588057892c56a1c5443cc0fc4000ef03060b

    • SHA256

      30030d63f8d18bfb86fc9115c0377e656320fa493992b747ec25daa293b624b8

    • SHA512

      447ae52f15e08d440f42e60010ebeed115f589f086853248973e55ad18b70962c2deaf4d61871b2a7d6aef6664363c7fb3d453f584413e21812f84b20cfda27a

    • SSDEEP

      96:PKIRyHoUHhHUHrHFHAH+HeHdHcH8THSHgHuH1HBaHZ9H2HwH4HrHhg9HzqU:iI8Egh

    Score
    3/10
    • Target

      fps boost tweak/5 GPUs Tweaks/NVIDIA/nvidiaProfileInspector.exe

    • Size

      578KB

    • MD5

      9a11825bb9ffaa5317b8f038dae2c078

    • SHA1

      4300e9816bf3b1faad81bd066642862f8d4e6b1f

    • SHA256

      dc784bd1acd222567fc1cef4a2e29d0ad10ba880c9ad5202687aadfc5bf5d9ef

    • SHA512

      148fc479395fa14ecdf8d6dca8a4cf3493c51eb92690ca7529246a28643696d804ee6efdad5d60a39481f123418175cda9099718d6123d58950e463e255e6ab4

    • SSDEEP

      6144:ZrS7YmOOjsy7d1x3Lyywhi1dTs0+TVSiuKS:Ze7nhVLyyr1dT/ISiI

    Score
    1/10
    • Target

      fps boost tweak/5 GPUs Tweaks/Radeon (AMD)/Apply Optimal Settings.reg

    • Size

      317B

    • MD5

      8ca9348683e90d897454da15cf107c6e

    • SHA1

      ca5b5b97b09dd37b9f7f715333c217766854f842

    • SHA256

      15b293a82bfc2ff2b670be991c03835b7099becf4862bfa2c6cac1a823af880e

    • SHA512

      4bd83a9b57603450135b95876b1328024ea0b798439a34d72b1c2dfb746b55b0393575d2bb51e1c692d3683df248f86b0bf57c140014aa2102b9bef45f12fa13

    Score
    1/10
    • Target

      fps boost tweak/5 GPUs Tweaks/Radeon (AMD)/Disable Some Power Savings.reg

    • Size

      249B

    • MD5

      10d69bb5a73f12e6d59ea8004a9792fd

    • SHA1

      a9dfa16a06a609fc5db17484ab46b72ecdd2970d

    • SHA256

      53c94ec5857acc1224c603c944d3e0ea65b34758419b674fb8848fba317f962f

    • SHA512

      ff380ed97c0b80f70d769bbd1653c8a256bb7945d459779f79c267e2b7243c9b1a70174a2a48859f2f92e3d03b71ce907d75571d958e4e82256a43bb897ba076

    Score
    1/10
    • Target

      fps boost tweak/6 Disable Memory Compression.cmd

    • Size

      65B

    • MD5

      a64d3a4c1d61344273de4e3f2dd3b652

    • SHA1

      245859a286db226f15a0c8c51c9b71f31ea1b79a

    • SHA256

      6f4b8912c0f77f2e589e8fed98246680bdd01a442f91729ce15ee812b8f4d50e

    • SHA512

      e564799596d11b71590569f8c7b31fe7446cabc2dc6bc423308edf7ad2fcb74cbc621891cc594a6b2ebc8320600d0ca2530e92042477246914c55f369d2856cb

    Score
    1/10
    • Target

      fps boost tweak/7 Disable Mitigations.cmd

    • Size

      222B

    • MD5

      11f1ffb2d1c6209392e2426beef33e26

    • SHA1

      0900d6a691144ed0c1489b36abd589380616c793

    • SHA256

      80bcc1324126a2f343a3017ed9dca60cfd90d595cc6da1f1ebd05b0a30fad873

    • SHA512

      891cee9743b84ff0f2e0776628ca3d85585603267bd0b447136cbf7bee8068421f5d87f35042d80d5c3e7ea4c9c192c3dfa120c4a122b5e16c90d4e60f4dad87

    Score
    4/10
    • Target

      fps boost tweak/8 BCDEdit Tweaks.cmd

    • Size

      87B

    • MD5

      5f2345a1a402bef4241033046a0472a2

    • SHA1

      0ac64069c6c0137a9f74122c11850cbe69e06052

    • SHA256

      d91becdafb3117e17dbc720e942050953c1e94421bf5ce14ed150ba7e89fa429

    • SHA512

      93d7746d528dfc1d0511ea9c3aa9531bb4560a20c83f62b7f52a2b369a0bfcae0f04689bcb417e25631a16c34dadd8404ab28fddf312af75f97795eb5442cee2

    Score
    9/10

MITRE ATT&CK Enterprise v15

Tasks