Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    xunyouup.exe

  • Size

    329KB

  • Sample

    240829-k1lfcatang

  • MD5

    9cc3f6bec0f422e8cff29838f66a4b42

  • SHA1

    5a60949aef923c398280aadbe503c5c6b43c7f56

  • SHA256

    42ca41614a50b0ed8e8f0b88ad2ac3837718d0138bedbd20a0727a71c957bc4a

  • SHA512

    2d74ac4d0d0d9de36c064ebdce421ac3daa1dcd9d54c44604087a48c1070f36cf9d2ed76ed6283a43ddb8245e0a258a3412ee44989e1b10b7911ed60ccd008fa

  • SSDEEP

    6144:m68oipnnK9jqXEX52Ums+Tbxzbx9SmIqQyPodMUf8Dkzel6R8zHe1IZ:WfnnK9zABs+TbFx9SXOPCf8DkqAR8zHr

Score
7/10

Malware Config

Targets

    • Target

      xunyouup.exe

    • Size

      329KB

    • MD5

      9cc3f6bec0f422e8cff29838f66a4b42

    • SHA1

      5a60949aef923c398280aadbe503c5c6b43c7f56

    • SHA256

      42ca41614a50b0ed8e8f0b88ad2ac3837718d0138bedbd20a0727a71c957bc4a

    • SHA512

      2d74ac4d0d0d9de36c064ebdce421ac3daa1dcd9d54c44604087a48c1070f36cf9d2ed76ed6283a43ddb8245e0a258a3412ee44989e1b10b7911ed60ccd008fa

    • SSDEEP

      6144:m68oipnnK9jqXEX52Ums+Tbxzbx9SmIqQyPodMUf8Dkzel6R8zHe1IZ:WfnnK9zABs+TbFx9SXOPCf8DkqAR8zHr

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks