Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Geekbench-...up.exe

windows11-21h2-x64

7

$PLUGINSDI...ns.dll

windows11-21h2-x64

3

$PLUGINSDI...nu.dll

windows11-21h2-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

Geekbench 6.exe

windows11-21h2-x64

1

amd_ags_x64.dll

windows11-21h2-x64

1

cpuidsdk64.dll

windows11-21h2-x64

1

geekbench6.exe

windows11-21h2-x64

1

geekbench_avx2.exe

windows11-21h2-x64

1

geekbench_x86_64.exe

windows11-21h2-x64

1

pl_opencl_x86_64.dll

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Geekbench-6.3.0-WindowsSetup.exe

  • Size

    288.3MB

  • Sample

    240904-j1jq3swgqm

  • MD5

    8a99ebfa58b12d1ac917b73d4a469e51

  • SHA1

    89b5a33ae960ae2d6b8e7f40da2393ebd72a97a5

  • SHA256

    52051ae6051e4219f058ff73a08a37f0ecfa3bde2005114881ac454598be7cd1

  • SHA512

    3c0db138e7ec5892f74307cde7aa06b12573103717b61c6078ea1916d2c97600e96d76b2bb3d6fdcd3c13a855cd85a4717c07b95c020ee5e96369e1a92167eaf

  • SSDEEP

    6291456:cRe1iyUORKMo8iARwL53vWDNrGCmXjQeKWJa2+:T18ORK/0wFvEaCmTQjYG

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      Geekbench-6.3.0-WindowsSetup.exe

    • Size

      288.3MB

    • MD5

      8a99ebfa58b12d1ac917b73d4a469e51

    • SHA1

      89b5a33ae960ae2d6b8e7f40da2393ebd72a97a5

    • SHA256

      52051ae6051e4219f058ff73a08a37f0ecfa3bde2005114881ac454598be7cd1

    • SHA512

      3c0db138e7ec5892f74307cde7aa06b12573103717b61c6078ea1916d2c97600e96d76b2bb3d6fdcd3c13a855cd85a4717c07b95c020ee5e96369e1a92167eaf

    • SSDEEP

      6291456:cRe1iyUORKMo8iARwL53vWDNrGCmXjQeKWJa2+:T18ORK/0wFvEaCmTQjYG

    Score
    7/10
    bootkitdiscoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      5f35212d7e90ee622b10be39b09bd270

    • SHA1

      c4bc9593902adf6daaef37e456dc6100d50d0925

    • SHA256

      31944b93e44301974d9c6f810d2da792e34a53dcacd619a08cb0385ac59e513d

    • SHA512

      7514810367f56d994c6d5703b56ac16124fab5dfdcfbe337d4413274c1ff9037a2ee623e49ab2fb6227412ab29fcc49a3ada1391910d44c2b5de0adeb3e7c2f0

    • SSDEEP

      192:E4n3T5aK+dHCMR1aQR9RuZl3WWmU7WYZsw1JpVGnrjaK72dwF7dBOne:tn3T5KdHCMRD/R1cOnrja+BO

    Score
    3/10
    discovery
    behavioral2

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      26836307758e048d1ce0afe754d6a972

    • SHA1

      23a8f45cf5e2ad78add3c4dd3b3cf15fffced2cc

    • SHA256

      a6919f5f3b53a9c8c015413babe7a9872491a2583e49bb3c261e60785c3c3534

    • SHA512

      aaf7cfbb9c6951b65bd377db401617812f1d47960a01ae99164183c642fbd8f1ce08720bc92d26b642da5433b80720dfcd96280a162decf678139966be132746

    • SSDEEP

      96:IgiqVPb3X8K8Kdr3gEq6nNdMk6Qiw290+q6LDtJ1tk3hhEl7y:IgiqVPgK8K9eIdE9B/t8hg7

    Score
    3/10
    discovery
    behavioral3

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      fccff8cb7a1067e23fd2e2b63971a8e1

    • SHA1

      30e2a9e137c1223a78a0f7b0bf96a1c361976d91

    • SHA256

      6fcea34c8666b06368379c6c402b5321202c11b00889401c743fb96c516c679e

    • SHA512

      f4335e84e6f8d70e462a22f1c93d2998673a7616c868177cac3e8784a3be1d7d0bb96f2583fa0ed82f4f2b6b8f5d9b33521c279a42e055d80a94b4f3f1791e0c

    • SSDEEP

      192:xPtkiQJr7V9r3HcU17S8g1w5xzWxy6j2V7i77blbTc4v:g7VpNo8gmOyRsVc4

    Score
    3/10
    discovery
    behavioral4

    • Target

      Geekbench 6.exe

    • Size

      65.1MB

    • MD5

      68d34bf905779fb43ea5827efff9d732

    • SHA1

      cd838533964f9c0f272256e41e8285d4d16e6984

    • SHA256

      e2b752ddd1d4ef4feccf65b80dc03dc5dcca292e7c291cb0e49eff121276a1a2

    • SHA512

      c87feec5dc11ecd49850d3def281d9fc2df07ed8dadfe095baa94a1f3f24828e0c0b277d91cf13a99edd59844a38737b74e399ea6bbd3f35ad6aecf07e378fd3

    • SSDEEP

      786432:iAEaiwb9GSOFcf/8FpKxmdDXxpHIAWL9CJPUnzEt:i9aiwb9GzFq/eKxmdzxdIAWL9CGzm

    Score
    1/10
    behavioral5

    • Target

      amd_ags_x64.dll

    • Size

      161KB

    • MD5

      03b30f558124e1f77e54ed6878513143

    • SHA1

      38941e25d2e3081e1b0bbf0e410f7a473a3dada9

    • SHA256

      a1c8af8d9516f57418173d651b869dca6599d6808b5cf9093b9680d77c483bfa

    • SHA512

      c95e87bc8fadc55b22093fe2d45773d9da3567e66255f870b7bc873ffc0e7ba0e88c7f234519e43da969eb2ad8bc17e3a0a6fb68fa676c91adc86b5815ef4f70

    • SSDEEP

      1536:ZYnkaYSVeHdyAQbXLpv3mEMv862s7vAXCM10LJZdz5J3CIPYreWM3jQSJ+diINKc:UmEMvOsN8IPYFM38w+MINlnoZpMNBtf

    Score
    1/10
    behavioral6

    • Target

      cpuidsdk64.dll

    • Size

      3.1MB

    • MD5

      a479fb51064bf4ec5be1a32dd3ff12e3

    • SHA1

      ac14f810d0518016e2f1af90a1ef1cf0b09b7432

    • SHA256

      bfe24771e40725b223db2765b8846eb344500a9d1a37d6a367e1c36eab3c0d7f

    • SHA512

      579dae96970917f3e6d0160ceac7fb3677ec2f12dc3e35866b2eb9c78af418402594665fffebf7559f15cdd5c2446bad95791895efe1f48b793f20ef1d3b3eae

    • SSDEEP

      49152:oaM7vPTxRbROt1x5xpRJxZp+bocl+pR/Bjr9yFHyVuUC:IbwpRJxvuJ

    Score
    1/10
    behavioral7

    • Target

      geekbench6.exe

    • Size

      3.1MB

    • MD5

      5d9fcad8e46357b801d615e9594f533e

    • SHA1

      9c1a96d17317f262775ebc0d17b03a8c78f333b4

    • SHA256

      e23041eb1d2d9ba56d689449df108f00154933c80423bba33e878e73fdf0747b

    • SHA512

      750ba1146bed31840b978945ca9fcad105c5ea041eb60fd1b63abe4073b07bb2a81dd840f764257bd68e5bcb8ec2b53bb4051cd92a2aedc62eed3850852d80b5

    • SSDEEP

      49152:yhTVDNGr6q9wVc4UGl6IIc6MCFu41+ikZKwP+BNJg8F4nGTM/irJ9T77G:m9UGl2c74ciVVB/TMB

    Score
    1/10
    behavioral8

    • Target

      geekbench_avx2.exe

    • Size

      70.4MB

    • MD5

      193fffdc18f5e2fd08bd68b63973f4a6

    • SHA1

      fc88c4412639a8606d37592baa20d9dbb2d409fb

    • SHA256

      798c5c1c35164c8b3c0f3866e080f679110d169b6436b4ca721f10c71de969a3

    • SHA512

      8656e1ae99320c5651733cd5228b3f25109cb296551bbffe41320350de15432a8fc5666d7f07c0b4cc60897df1cfd092efbd2ab25efe1b13a68ed1a97b3d1f1c

    • SSDEEP

      786432:13Pjy+wRCSNFi4bFXyT0b2cZnY9GJrXCnGN5hZPb8UCw:Fjy+8CSNFiGFXyTB9GJrXEGN5hmUCw

    Score
    1/10
    behavioral9

    • Target

      geekbench_x86_64.exe

    • Size

      64.4MB

    • MD5

      f5ad6db1086f77abf74cdfab1f580c58

    • SHA1

      38a4f9812b663f6b1ba5b8b94b85a8cc903e12e9

    • SHA256

      9aadaeedd0f32e95d51dd8abc4c021d58053aed26ff6e1b3c64b1500182f6906

    • SHA512

      0ec1d3ff78ac2e81da2361db26c03a90c45f4d204e2950c346df00bd60b0a62154daf94dc093661e9cc33d89b0e332715019ea24ac27c3cda2c5fbb42b09d355

    • SSDEEP

      786432:ajxTgSGNNihc/sNK/m9ftQEBNJ0m6cWikcYGQcvPkpwfI:ajtgSGNNi6/QKQftQEBNJ0BcTkcYGQca

    Score
    1/10
    behavioral10

    • Target

      pl_opencl_x86_64.dll

    • Size

      121KB

    • MD5

      23e662f72d4ff55541627234b4d2fb26

    • SHA1

      1c420a84fd4daeec8365f9efecefea656906665f

    • SHA256

      3ee470c6ba34d6d34de450ec4f4cfbfe99154aa3587dda089fc0622b87073b7d

    • SHA512

      61f0e31d3339b86701c2c3839efa99927b2ab27813094718b7ef643cea1665a3de14dd8b9224e5ce803a3c15eee93b0db6b85f1c58ae78e0fb0bbf36d4022019

    • SSDEEP

      3072:IkGIsmihE0Q0KfRP5isbN+2RFIgIKrVOnKZTomDf:kgihE0Q51ksbNjzVOnKZTFD

    Score
    1/10
    behavioral11

MITRE ATT&CK Enterprise v15

Tasks