Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

JJmatch-v20101124.exe

windows7-x64

7

JJmatch-v20101124.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

GCSkin/Def...t1.ps1

windows7-x64

3

GCSkin/Def...t1.ps1

windows10-2004-x64

3

LordTheme/...n0.ps1

windows7-x64

3

LordTheme/...n0.ps1

windows10-2004-x64

3

TKChatCtrl.dll

windows7-x64

1

TKChatCtrl.dll

windows10-2004-x64

1

TKEmotionPlayer.dll

windows7-x64

1

TKEmotionPlayer.dll

windows10-2004-x64

1

TKGC.exe

windows7-x64

1

TKGC.exe

windows10-2004-x64

1

TKGameChatCtrl.dll

windows7-x64

3

TKGameChatCtrl.dll

windows10-2004-x64

3

TKLobby.exe

windows7-x64

1

TKLobby.exe

windows10-2004-x64

1

TKLobby.exe

windows7-x64

1

TKLobby.exe

windows10-2004-x64

1

TKLord.exe

windows7-x64

1

TKLord.exe

windows10-2004-x64

1

TKLordDll.dll

windows7-x64

5

TKLordDll.dll

windows10-2004-x64

5

TKMahjongDll.dll

windows7-x64

4

TKMahjongDll.dll

windows10-2004-x64

4

TKMatchInfo.dll

windows7-x64

1

TKMatchInfo.dll

windows10-2004-x64

1

TKProducts...ion.js

windows7-x64

3

TKProducts...ion.js

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1685ff3ed1e004631cd55e4ae0aeaba7_JaffaCakes118

  • Size

    13.7MB

  • Sample

    240627-swgklaxflf

  • MD5

    1685ff3ed1e004631cd55e4ae0aeaba7

  • SHA1

    db634212374555ca01bea5c7a03f27ac2c520fc0

  • SHA256

    39e1780e7003dfbeb31a0b0c1d1c9c72c7eeaafa30cd1408757b9ceb56916e93

  • SHA512

    5511071cb6ae4d5517a66c9b2dd9bd772f1b93f29cfb8629d9a8d71965f66bd7dae183fc376e1921bcca43fe9f3fdbf5ee45ee7e52e63916df41917b55060394

  • SSDEEP

    393216:PF3K66gO+mmr2cGXhe1tqeruXYoChIlGj/4dS:PFa66g6q3l1ke+YoCIl6/4E

Score
7/10
execution

Malware Config

Targets

    • Target

      JJmatch-v20101124.exe

    • Size

      13.7MB

    • MD5

      da4a7879f242f9f85b2633b176bc4bc5

    • SHA1

      7acc32a1d16bee9e3e9a56ea8b421a3e3709132c

    • SHA256

      a848401f87f0a982861e599375fd856f7d0332b58ce66970491b4fd3c5168338

    • SHA512

      fb338006e030ffa4d027e945c403081466020772f3764260465856e2f1e9e3bc6c541b835932edf801a77deed892558b6d8c071188c6a183650a42d56286e286

    • SSDEEP

      393216:rTkVJrR6kJbp8EOTPvZkBU+vJKDssvYDn6hEzKzYis:rTCxrFuTPhsHqs4YDncAT

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      0dc0cc7a6d9db685bf05a7e5f3ea4781

    • SHA1

      5d8b6268eeec9d8d904bc9d988a4b588b392213f

    • SHA256

      8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c

    • SHA512

      814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0

    • SSDEEP

      192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      4e96f412a8cc653053d5d918df6b0836

    • SHA1

      a3c7d59043feecb1603874b27c23d4166b341f2d

    • SHA256

      e4a54bfc327986a89165bdef361069810aaa985c3abecd442c786725fabaf977

    • SHA512

      2fec61b4ad31250bdbdbbfd551d831801790b96902c67200661e8f4f2753378bbf6c0c88b12e1be9173a29597827c1c4809511b6d52666dc3324bd7031c8229d

    • SSDEEP

      96:IiqA7bDe2xHkR1C41EhvSE+6nNtMn0iGd8CqRLqtJ1trRhElfL:IiqA7/ZH0uQMtcfCqo/tdgf

    Score
    3/10
    behavioral5behavioral6

    • Target

      GCSkin/Default/BtnPot1.bmp

    • Size

      152KB

    • MD5

      312e09450face7ec524a8c1d312fc609

    • SHA1

      d0e47dd97bf1bdac1be340c9b1c32b4d5231b479

    • SHA256

      1dc055c9e558682672a629ab20f5a5258aa06d1911981248efe1c1753c5dcb46

    • SHA512

      f971ada4c9ca48b02d285d7be67e3ef0be669522be2aaaacbd42c2e0ec19e7fe64095ada9a5616a254fbb0d84b58061b7fae42b578a7bf3b34c89155b3e07e7a

    • SSDEEP

      1536:lM5Qq6HCY7fsNzWfJQJf6joK8pK2r6orYqxeaitHLr/To1T6fGqDEb6DbG:KZevN8pj6LPFffDzm

    Score
    3/10
    execution
    behavioral7behavioral8

    • Target

      LordTheme/Default/ChangeYellowBoyBtn0.bmp

    • Size

      152KB

    • MD5

      312e09450face7ec524a8c1d312fc609

    • SHA1

      d0e47dd97bf1bdac1be340c9b1c32b4d5231b479

    • SHA256

      1dc055c9e558682672a629ab20f5a5258aa06d1911981248efe1c1753c5dcb46

    • SHA512

      f971ada4c9ca48b02d285d7be67e3ef0be669522be2aaaacbd42c2e0ec19e7fe64095ada9a5616a254fbb0d84b58061b7fae42b578a7bf3b34c89155b3e07e7a

    • SSDEEP

      1536:lM5Qq6HCY7fsNzWfJQJf6joK8pK2r6orYqxeaitHLr/To1T6fGqDEb6DbG:KZevN8pj6LPFffDzm

    Score
    3/10
    execution
    behavioral10behavioral9

    • Target

      TKChatCtrl.dll

    • Size

      104KB

    • MD5

      704307aeddaa9334cbaff5bdf8bb6315

    • SHA1

      ab3d945511a4d54f5a1190eb3b7471ced382ef0d

    • SHA256

      687a5631b565d7807eebc30d06072a4dde0ad486ca25ee2593433b21597f93ee

    • SHA512

      d94d9d39099e943f9662d93a83bdbcee45d72a03e5054b30b369dca3154553be69123d28b8ee54f803f0953af18a6af9e2611f060bd269f5fdd916b7d2db71bb

    • SSDEEP

      1536:bakDKnpqdOEso0g/WyaAmFOvIvvdNNBx54I+FHwUqUoIoUjG84gwVdEFmU1:/DrdOEsbqavFR9NNn5/4YnEF

    Score
    1/10
    behavioral11behavioral12

    • Target

      TKEmotionPlayer.dll

    • Size

      88KB

    • MD5

      9790413b780b0cc28a8d041332c22ed2

    • SHA1

      e8f8d35078f276f126d1427973290c0542bc4b1d

    • SHA256

      9f57b712be7a1b9c00dffe3c1b8cb02d136c8fec09946331b2b29214a95c64e7

    • SHA512

      4c2f7a4ea2dfb014f86b46080233c4740645d6ca64a771096e997bf90510619c67fe37d980f7b926310ccbb0ed98d44cc1ccc0ddcd1a4166d5620a4f3c494d85

    • SSDEEP

      1536:nmXclcc4FZB1byQgT1FnmZ1o6QF9n3x1NBc5wcu2:mXscxZB1bZgTjnm/onFNx1NW5x

    Score
    1/10
    behavioral13behavioral14

    • Target

      TKGC.exe

    • Size

      500KB

    • MD5

      285447f015c5b5f6ab6fb07e19ca741d

    • SHA1

      824818c151030211ca4914ea941f5a93678b41b7

    • SHA256

      d9012f458b26f64aea021f80cbfe1ab32a3276dc6b720adf14673569353b14f4

    • SHA512

      9007552e52d72bcdfd026d7f3d1394fda84b8f4785983abf7fcae4cb27a483dda953437bec45733e5490d058ea4074843f4f4153ec8aa618b0c0e61170da0613

    • SSDEEP

      12288:kyPwRGjqbVB0xMsTriHq+t+SSKiYVtigLsyOqCGd2N1zPXfnLDnmeicSa2JZF/ah:zPwRGkVB0x3kq+EctT4yOqCGd2N1zPXd

    Score
    1/10
    behavioral15behavioral16

    • Target

      TKGameChatCtrl.dll

    • Size

      104KB

    • MD5

      ea18569f0db24a4f2b71acad9eb19c1e

    • SHA1

      56c1e1f2060db30ccf20111ace8b0a8aefb1a256

    • SHA256

      a31f6354efc4e6d96f88f5380c366bf5eb069758d48dda88f389d79d8c0b9c01

    • SHA512

      e74fcb602ee2c1d39e7bfcef2ea7cc81e896b5ef2732d72a3027f40b828e7c7e90a4581cf27a4b5c4bea01b4fc50389578a81babdcac4103ad9880c5da41ef53

    • SSDEEP

      1536:UN5FgfOWojL3YfTpIvBdAjbczSOIutqYMcwAovJmnzhy4:OgUjL0NIv8dOPqYRDkJazhy

    Score
    3/10
    behavioral17behavioral18

    • Target

      TKLobby.exe

    • Size

      648KB

    • MD5

      7cbe8b22540ecbe590d9a3f59844624b

    • SHA1

      9930092956cf9eda22e16756f304dbc3b3151ac6

    • SHA256

      79e74ff4efbc7ce33ff1f12ce18ce4160d6bcaed66e304f7129b72c0539ba38c

    • SHA512

      7d6e74aedc24e9116e37a4618c7ee3bb556cfa0dfc619852d57feb689cb11a8192c4085375195cffb7ac29420b464732da7c5c0457fcc9d4b1f13687bf9c6b89

    • SSDEEP

      6144:HLCfTBe5ZAsRViOsvzvTyCs419YIk32lmEOgqnwoPHqTsssQQQQQQe9JB:OfTiR4OsLvRGtmlm1gqwr

    Score
    1/10
    behavioral19behavioral20

    • Target

      TKLobby.exe.bak

    • Size

      640KB

    • MD5

      53d630dfcde4b9f100a46cc8aa65eee2

    • SHA1

      9e1f467686e0ee2a4269241bc595c7e1c56e77aa

    • SHA256

      7a741735708ab53ea422ab81a07b2195cadbcb5800a634b55d188955544bc05d

    • SHA512

      9226f49d7b16af112e71b75e221218c174e9b78d864532370288bb887a2c406a08e0dadaf7f5072e3124e877d776a57a728658de05d32be3750ccc00e5eedf8c

    • SSDEEP

      6144:B9rDvJ6PamdBJ8hhjtctO5MCNOaaKro6DKM+E3LAqnwo5LqTsssQQQQQQe9JB:LQ8jtc85WnXFE3LAqwd

    Score
    1/10
    behavioral21behavioral22

    • Target

      TKLord.exe

    • Size

      128KB

    • MD5

      38c8fa7c3ffa3b28dda7b3eb83d60d3b

    • SHA1

      527ee22d5fa6997abf0cec31f4efc756bfecc0f3

    • SHA256

      623cbe4ab3a3c1e1ed85cabf12eb0a8e3d52880e513ea92742356ecbf320f8a4

    • SHA512

      9f14da3f1b4074c9d2170c607fa958db42d4d80fde3ae370c549656fa05e79c5e440e039057c4e5348fc416bb01be9370499fdcfe840c2466de86f27689c390e

    • SSDEEP

      1536:CHGwpIKPQZP/l3biuTJX+iKcqbiuTJX+iKc:Cmwil3biuTJX+iKRbiuTJX+iK

    Score
    1/10
    behavioral23behavioral24

    • Target

      TKLordDll.dll

    • Size

      384KB

    • MD5

      c26088e4fa57437ff5d17408d685f0a0

    • SHA1

      b592663af2a0c0b3f69284c8c982eb452a9eb550

    • SHA256

      cd9af5714f10034fc1bee23864739e09c2a3c022749ca52d531a2b8848773e8f

    • SHA512

      046e9244a32fb5c327c68e091a17fffc3f84eaa70e3b4bef1c25beddb25145be590fdabc823ea940c8dc69287b89a716a05e2acc2cf33f8f1c7f1c245f8a6d3b

    • SSDEEP

      6144:oXO1VjCYefJkYhRoDgofE4tfKWSsKzCY85oN/iqJX+dZ:oXO1VNYh/4NFS5CYxqqcdZ

    Score
    5/10

    • Drops file in System32 directory

    behavioral25behavioral26

    • Target

      TKMahjongDll.dll

    • Size

      376KB

    • MD5

      780cefe6264ed47928e41018bc3c1814

    • SHA1

      897141fa2995194cc8584459377cba44a97433e1

    • SHA256

      9eafb555cd905b879c6d0583c30e6c663aecd7ec7ccd45ff599cf0ded5cbff83

    • SHA512

      b9db7a796325966c9383f3f87bdf8908249ef63b1d4c40c349392ce5f4b281079b676629ac49a85a082c69eeca010c9b64ddf14bdd73d3e2f5ff1e1dce622d11

    • SSDEEP

      6144:nCchuiA6nLd8U/Fu4FFlYATK98FqBcGKWPriqJX+duYfu9:EiAunFu47tTBqBcGUqcdU9

    Score
    4/10
    behavioral27behavioral28

    • Target

      TKMatchInfo.dll

    • Size

      248KB

    • MD5

      41774b2be6352f6da2e47e0dd896b37a

    • SHA1

      b000754e2a47602632f8e400654b4a7553f6124a

    • SHA256

      29c629557e19264f36fbb3c364de70c12112172a8b80ebfccfecdd5fa2819713

    • SHA512

      2f029b7216419ad3c7f40914714eca4df91da3f5520ffa0fbcf182aa0207daf49f2a805bf892e5a9ea28ec52ed1ba436eeaef8db7e708748cc3ce9caa5b5a400

    • SSDEEP

      6144:LT+2YZpQXdcAqenApR6/IA6LpZO6h7loD+yulXYcVewQqlwnx8uHu0niVG+LZ/ju:LrNANAYRi+XQZ1aEZv

    Score
    1/10
    behavioral29behavioral30

    • Target

      TKProducts/10/SpryAssets/SpryAccordion.js

    • Size

      12KB

    • MD5

      1076f194fa46a79464e0dbb5096a4c91

    • SHA1

      17b0407a7b778d096a967f5f7d24a74431c6b65f

    • SHA256

      1dd5c409409ad611fd8ba06573a5795b82c07cf75fcb0c4aef789ccf66f9786f

    • SHA512

      db8e8a107f7e7820fc9906d9afeb85635d8d07ec8f92ae696343043716b8ce934d02da19ed427796202a24693317d421f28283a4efdc559bb08f88fcd9c118bb

    • SSDEEP

      192:PYG4R77BKDnOhfspQJPb0DvlH9DGGF7v+:47nf+djE

    Score
    3/10
    execution
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
7/10

behavioral2

Score
7/10

behavioral3

Score
3/10

behavioral4

Score
3/10

behavioral5

Score
3/10

behavioral6

Score
3/10

behavioral7

execution
Score
3/10

behavioral8

execution
Score
3/10

behavioral9

execution
Score
3/10

behavioral10

execution
Score
3/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
3/10

behavioral18

Score
3/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
5/10

behavioral26

Score
5/10

behavioral27

Score
4/10

behavioral28

Score
4/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

execution
Score
3/10

behavioral32

execution
Score
3/10