Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

wordpipe-tc.exe

windows7-x64

7

wordpipe-tc.exe

windows10-2004-x64

7

wordpipe4....��.exe

windows7-x64

1

wordpipe4....��.exe

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c7991958ba5270d9e808632bfea27bf_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240712-jasw3awdqe

  • MD5

    3c7991958ba5270d9e808632bfea27bf

  • SHA1

    4d84054482abdf30e7e96e236c02699812eefd1a

  • SHA256

    5b72d41bd3a4c15286da8c65921a9c0ec0fa854cae56a0892963dc8b9a354ed2

  • SHA512

    12d157c9d5c808e11524f9e77a0bea1f27dd33c9a9174e9698373fef39c557ed861379eeed930dbbdebce7c19452ee7a787aa01de7721123fdd54f9dbd6b0ebc

  • SSDEEP

    24576:tXaHQiM6LSlxeX7GHJUn7RPTxd5lTQrS52uQZQ14pHXHh2jSc6Y8:kH6Lxa7GHJU1PTxrlTQryxQi6x2+c6Y8

Score
7/10

Malware Config

Targets

    • Target

      wordpipe-tc.exe

    • Size

      1.3MB

    • MD5

      df88b15c44567a43d521fa9d7b52e4e2

    • SHA1

      4d7b7aedb7c93cdb28c177cc43e05303cf6cc371

    • SHA256

      1964d0a77f13a5e84df7342268c05e766bb54e4a9916090ce33a672756c44b0e

    • SHA512

      fb13aa9c40e3fe53c79d37c9c583bccabb285923f105f8243e14d67655eb548e5043969766219bfc63368004c497bf56139076bf29bac42240d165d6559b2b9b

    • SSDEEP

      24576:n2nEu1Hp8tq+L2nbUKmQevSlBmqWM21VbbxnPuZyVdNaMBX5EeYE:2j9p8tnLrFpvSd121V3xnPuYVdNQeX

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      wordpipe4.8官方中文补丁.exe

    • Size

      56KB

    • MD5

      35d4c7c9e20d732411ca2d749c0ff19a

    • SHA1

      a63c4c75589bb7a26e9e3cc6bdba06eae34c6400

    • SHA256

      7378715a2203b68049c7a189bef606d69b2c0c63f117d2ebf64c774be450d8eb

    • SHA512

      b54ddbf6f380ea5967cbe2baddcd194ee6271393fd21bcd1dff2266be970a786fc1d0db929771951d96f013d30de5482ba77e64510b7ddb35217629774f64fac

    • SSDEEP

      768:RLsLMpbdbakR8GB2N7gKYHYcyCSWU6qtFoHLLHkJY6f9aqTLlTeTAeODlj8QFZ9r:dsLMFdHBBdKCpq4kJY6JTLhvxTqTwOx8

    Score
    1/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      12KB

    • MD5

      1e8f2fefe3ce893b117b26948b8978cb

    • SHA1

      59cfc6c3f5716e91609e54ca80ae8b06c93ef8ab

    • SHA256

      8203ae1589a50e6ff012e5d27bdd4f8ed7506077ca9b052827f5e90aaeb98519

    • SHA512

      b3c36e1aa5d3ee5f482f4175a7d6fe10cf2bf3bd3423ab4266d11c4181cfbc7e3f66a30855034a8ec026a4d5987598f0116e98519b7445d9e5687bcbab2c0e5c

    • SSDEEP

      192:qzixixDOHhG9db9rd+oSVPECMlh3I8tqDyng7hwbbHF1QuCb:qOx0DOHqrdwTY6+ng72bbMum

    Score
    3/10
    behavioral5behavioral6

    • Target

      uninst.exe

    • Size

      39KB

    • MD5

      467b085627683e20e667e0c8cf2eb01f

    • SHA1

      b45a6498221b55d0b3ec3bca3b749e448e2f5cb7

    • SHA256

      efe706a3035999a7bc9ace31e70430656067539c3ca22cc243d9fe0b162acdb0

    • SHA512

      ae164bd8665f7822f7038c7dc668cc48b2dbf9e99e1673b36579b28949e94ea26c3af3c3ec502b9e186e635f64439c22363bdc0ab7dc0d67cc00548d5550d3fd

    • SSDEEP

      768:RLsLMpbdbakR8GB2N7gKYHYcyCSWU6qtFoHLLHkJY6f9a2A:dsLMFdHBBdKCpq4kJY6lA

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks