Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3c7991958ba5270d9e808632bfea27bf_JaffaCakes118
-
Size
1.3MB
-
Sample
240712-jasw3awdqe
-
MD5
3c7991958ba5270d9e808632bfea27bf
-
SHA1
4d84054482abdf30e7e96e236c02699812eefd1a
-
SHA256
5b72d41bd3a4c15286da8c65921a9c0ec0fa854cae56a0892963dc8b9a354ed2
-
SHA512
12d157c9d5c808e11524f9e77a0bea1f27dd33c9a9174e9698373fef39c557ed861379eeed930dbbdebce7c19452ee7a787aa01de7721123fdd54f9dbd6b0ebc
-
SSDEEP
24576:tXaHQiM6LSlxeX7GHJUn7RPTxd5lTQrS52uQZQ14pHXHh2jSc6Y8:kH6Lxa7GHJU1PTxrlTQryxQi6x2+c6Y8
Static task
static1
Behavioral task
behavioral1
Sample
wordpipe-tc.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
wordpipe-tc.exe
Resource
win10v2004-20240704-en
Behavioral task
behavioral3
Sample
wordpipe4.8官方中文补丁.exe
Resource
win7-20240708-en
Behavioral task
behavioral4
Sample
wordpipe4.8官方中文补丁.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral7
Sample
uninst.exe
Resource
win7-20240705-en
Behavioral task
behavioral8
Sample
uninst.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
wordpipe-tc.exe
-
Size
1.3MB
-
MD5
df88b15c44567a43d521fa9d7b52e4e2
-
SHA1
4d7b7aedb7c93cdb28c177cc43e05303cf6cc371
-
SHA256
1964d0a77f13a5e84df7342268c05e766bb54e4a9916090ce33a672756c44b0e
-
SHA512
fb13aa9c40e3fe53c79d37c9c583bccabb285923f105f8243e14d67655eb548e5043969766219bfc63368004c497bf56139076bf29bac42240d165d6559b2b9b
-
SSDEEP
24576:n2nEu1Hp8tq+L2nbUKmQevSlBmqWM21VbbxnPuZyVdNaMBX5EeYE:2j9p8tnLrFpvSd121V3xnPuYVdNQeX
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
wordpipe4.8官方中文补丁.exe
-
Size
56KB
-
MD5
35d4c7c9e20d732411ca2d749c0ff19a
-
SHA1
a63c4c75589bb7a26e9e3cc6bdba06eae34c6400
-
SHA256
7378715a2203b68049c7a189bef606d69b2c0c63f117d2ebf64c774be450d8eb
-
SHA512
b54ddbf6f380ea5967cbe2baddcd194ee6271393fd21bcd1dff2266be970a786fc1d0db929771951d96f013d30de5482ba77e64510b7ddb35217629774f64fac
-
SSDEEP
768:RLsLMpbdbakR8GB2N7gKYHYcyCSWU6qtFoHLLHkJY6f9aqTLlTeTAeODlj8QFZ9r:dsLMFdHBBdKCpq4kJY6JTLhvxTqTwOx8
Score1/10 -
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
12KB
-
MD5
1e8f2fefe3ce893b117b26948b8978cb
-
SHA1
59cfc6c3f5716e91609e54ca80ae8b06c93ef8ab
-
SHA256
8203ae1589a50e6ff012e5d27bdd4f8ed7506077ca9b052827f5e90aaeb98519
-
SHA512
b3c36e1aa5d3ee5f482f4175a7d6fe10cf2bf3bd3423ab4266d11c4181cfbc7e3f66a30855034a8ec026a4d5987598f0116e98519b7445d9e5687bcbab2c0e5c
-
SSDEEP
192:qzixixDOHhG9db9rd+oSVPECMlh3I8tqDyng7hwbbHF1QuCb:qOx0DOHqrdwTY6+ng72bbMum
Score3/10 -
-
-
Target
uninst.exe
-
Size
39KB
-
MD5
467b085627683e20e667e0c8cf2eb01f
-
SHA1
b45a6498221b55d0b3ec3bca3b749e448e2f5cb7
-
SHA256
efe706a3035999a7bc9ace31e70430656067539c3ca22cc243d9fe0b162acdb0
-
SHA512
ae164bd8665f7822f7038c7dc668cc48b2dbf9e99e1673b36579b28949e94ea26c3af3c3ec502b9e186e635f64439c22363bdc0ab7dc0d67cc00548d5550d3fd
-
SSDEEP
768:RLsLMpbdbakR8GB2N7gKYHYcyCSWU6qtFoHLLHkJY6f9a2A:dsLMFdHBBdKCpq4kJY6lA
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-