dffb606169831b2baea5de7c081ea21f11dfd70224ba90e3f39d4734981b02c6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

zhongaclie...75.zip

windows7-x64

4

zhongaclie...75.zip

windows10-2004-x64

1

zhongaclie...und.js

windows7-x64

3

zhongaclie...und.js

windows10-2004-x64

3

zhongaclie...i.html

windows7-x64

3

zhongaclie...i.html

windows10-2004-x64

3

zhongaclie...x.html

windows7-x64

3

zhongaclie...x.html

windows10-2004-x64

3

zhongaclie...ain.js

windows7-x64

3

zhongaclie...ain.js

windows10-2004-x64

3

zhongaclie...mid.js

windows7-x64

3

zhongaclie...mid.js

windows10-2004-x64

3

zhongaclie...itm.js

windows7-x64

3

zhongaclie...itm.js

windows10-2004-x64

3

zhongaclie...min.js

windows7-x64

3

zhongaclie...min.js

windows10-2004-x64

3

zhongaclie...min.js

windows7-x64

3

zhongaclie...min.js

windows10-2004-x64

3

zhongaclie...min.js

windows7-x64

3

zhongaclie...min.js

windows10-2004-x64

3

zhongaclie...der.js

windows7-x64

3

zhongaclie...der.js

windows10-2004-x64

3

zhongaclie..._t.png

windows7-x64

1

zhongaclie..._t.png

windows10-2004-x64

3

zhongaclie...n1.css

windows7-x64

3

zhongaclie...n1.css

windows10-2004-x64

7

zhongaclie...t.json

windows7-x64

3

zhongaclie...t.json

windows10-2004-x64

3

zhongaclie...p.html

windows7-x64

3

zhongaclie...p.html

windows10-2004-x64

3

zhongaclie...pup.js

windows7-x64

3

zhongaclie...pup.js

windows10-2004-x64

3

Analysis

max time kernel
134s
max time network
126s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
25/07/2024, 18:53

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

zhongaclient by zhong 0.0.7 p75.zip

Resource

win7-20240708-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

zhongaclient by zhong 0.0.7 p75.zip

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

zhongaclient by zhong 0.0.7 p75/background.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

zhongaclient by zhong 0.0.7 p75/background.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

zhongaclient by zhong 0.0.7 p75/gui.html

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

zhongaclient by zhong 0.0.7 p75/gui.html

Resource

win10v2004-20240709-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral7

Sample

zhongaclient by zhong 0.0.7 p75/index.html

Resource

win7-20240708-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

zhongaclient by zhong 0.0.7 p75/index.html

Resource

win10v2004-20240709-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral9

Sample

zhongaclient by zhong 0.0.7 p75/inject/main.js

Resource

win7-20240705-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

zhongaclient by zhong 0.0.7 p75/inject/main.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

zhongaclient by zhong 0.0.7 p75/inject/mid.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

zhongaclient by zhong 0.0.7 p75/inject/mid.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

zhongaclient by zhong 0.0.7 p75/inject/ws_mitm.js

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

zhongaclient by zhong 0.0.7 p75/inject/ws_mitm.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

zhongaclient by zhong 0.0.7 p75/libs/jquery.min.js

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

zhongaclient by zhong 0.0.7 p75/libs/jquery.min.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

zhongaclient by zhong 0.0.7 p75/libs/pathfinding-browser.min.js

Resource

win7-20240705-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

zhongaclient by zhong 0.0.7 p75/libs/pathfinding-browser.min.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

zhongaclient by zhong 0.0.7 p75/libs/socket.io.min.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

zhongaclient by zhong 0.0.7 p75/libs/socket.io.min.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

zhongaclient by zhong 0.0.7 p75/loader.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

zhongaclient by zhong 0.0.7 p75/loader.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

zhongaclient by zhong 0.0.7 p75/logo_t.png

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

zhongaclient by zhong 0.0.7 p75/logo_t.png

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

zhongaclient by zhong 0.0.7 p75/main1.css

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

zhongaclient by zhong 0.0.7 p75/main1.css

Resource

win10v2004-20240709-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral27

Sample

zhongaclient by zhong 0.0.7 p75/manifest.json

Resource

win7-20240704-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral28

Sample

zhongaclient by zhong 0.0.7 p75/manifest.json

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

zhongaclient by zhong 0.0.7 p75/popup.html

Resource

win7-20240708-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral30

Sample

zhongaclient by zhong 0.0.7 p75/popup.html

Resource

win10v2004-20240704-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral31

Sample

zhongaclient by zhong 0.0.7 p75/popup.js

Resource

win7-20240704-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

zhongaclient by zhong 0.0.7 p75/popup.js

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

zhongaclient by zhong 0.0.7 p75/loader.js
Size

19KB
MD5

0ff0247e64fd9f125cf6b7d6949cb27f
SHA1

9ebfdcff9a1725b6fa69c4a1a2a90bbebe8f0664
SHA256

8f4f0af4ed499da51b503d0797d49b363c95ae9a2d5117e6b8bebbfc116b12d4
SHA512

cf5f5fd96a3c434c9ffa851b6525525ff70da1461e4fdeac54c41c63f0c692cb833dd4d435eac4a3b3e5149bfb039e2a08e26d5a06bba73cfede6150bf882d10
SSDEEP

384:Ztu177SAUct7cEfZl3coPb1aOezDF8ABtSysxc0pG5QwY8ibXVq+Ax:3u1ygJcMZlbzhezx/LSyOQqXk

Score

3^/10

execution

Malware Config

Signatures

Command and Scripting Interpreter: JavaScript 1 TTPs
execution

JavaScript
T1059.007

Processes

C:\Windows\system32\wscript.exe
wscript.exe "C:\Users\Admin\AppData\Local\Temp\zhongaclient by zhong 0.0.7 p75\loader.js"
1⤵
PID:1492

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy