Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

海市蜃楼[云].exe

windows7-x64

6

海市蜃楼[云].exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db11b2d2781e8cb882d985cc91627d76f73f5d9e1e813b460fc2f350657b23e0

  • Size

    3.3MB

  • Sample

    240722-kq1saaybrh

  • MD5

    a2942a04ee2cac070e3eccdf85eb3eaf

  • SHA1

    b8810b3fa7ceec7fac208f76a56bb2484a7de7ee

  • SHA256

    db11b2d2781e8cb882d985cc91627d76f73f5d9e1e813b460fc2f350657b23e0

  • SHA512

    f6af3bc22051ce20146bccf97885399804ff1db001fb0032c2081b9cefe70bee2305252a7a77de93938ee1dacbeb0297d93a2a644949462393726b3f4cf2261f

  • SSDEEP

    49152:ZhLCfpR4IlsNDGUxebObWVrr0YzqFx+iermiGZGbN24UQlVLWE2nNUx/JFvC+Cp5:nmfopGOXIIXyKjgU4UkLWE2ex/6ZFvb

Score
6/10

Malware Config

Targets

    • Target

      海市蜃楼[云].exe

    • Size

      6.6MB

    • MD5

      266189a80d0b53ae6ca6b91184963d21

    • SHA1

      98c45a479388c992d18a02a4d8a929e682130bef

    • SHA256

      05a7d4f830a8702ad0d885c2cda8a2dce8e7e4d91d097caae7367ef5c0b558db

    • SHA512

      8702723bc32604d38b1a61dbd7e7d0e7c9930e59ccac6f9bc7d90bcf278cceeae598465e1acbd94caa832bfa05d20d06008dcbeeb4fb199ddebeb31646a2f895

    • SSDEEP

      98304:Vzbt8p9uc7R7m8mKFujq6wrUkUTQ23s+PLK3vfiCYuE+FZD8xQIONTclaGPbwAnz:6pQ+uvTQ23s+PO3vfpYisQIOpKJM

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks