Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

IDAPortable.exe

windows7-x64

7

IDAPortable.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$PLUGINSDI...ce.dll

windows7-x64

3

$PLUGINSDI...ce.dll

windows10-2004-x64

3

$PLUGINSDI...ry.dll

windows7-x64

3

$PLUGINSDI...ry.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    IDAPortable.exe

  • Size

    117KB

  • Sample

    240906-bdbsysxdqm

  • MD5

    678eb6b7dddbd6506f111118b974f715

  • SHA1

    100860283ba8248a17e0c37ea108b9b7439c4b1e

  • SHA256

    3d549e8a2d10c10c05263a804d7947fd6dcfdb362d3bc615e8c93e85e846fb72

  • SHA512

    1900e0eb6d3fc4ecd79de902497246aafc98c41aebbf816ff02070f5c087d674323113e7283128e27fb229f4fbf923c14b3cf2895d31a49220ee97c4ca45a7f5

  • SSDEEP

    3072:URD+3q3NxPTNuqG7GiAtGn61v5Wj1bvue6c5ny8Z7qO2G5:uwq3NpFE0Gn61855HXx2G5

Score
7/10
discovery

Malware Config

Targets

    • Target

      IDAPortable.exe

    • Size

      117KB

    • MD5

      678eb6b7dddbd6506f111118b974f715

    • SHA1

      100860283ba8248a17e0c37ea108b9b7439c4b1e

    • SHA256

      3d549e8a2d10c10c05263a804d7947fd6dcfdb362d3bc615e8c93e85e846fb72

    • SHA512

      1900e0eb6d3fc4ecd79de902497246aafc98c41aebbf816ff02070f5c087d674323113e7283128e27fb229f4fbf923c14b3cf2895d31a49220ee97c4ca45a7f5

    • SSDEEP

      3072:URD+3q3NxPTNuqG7GiAtGn61v5Wj1bvue6c5ny8Z7qO2G5:uwq3NpFE0Gn61855HXx2G5

    Score
    7/10
    discovery

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      17ed1c86bd67e78ade4712be48a7d2bd

    • SHA1

      1cc9fe86d6d6030b4dae45ecddce5907991c01a0

    • SHA256

      bd046e6497b304e4ea4ab102cab2b1f94ce09bde0eebba4c59942a732679e4eb

    • SHA512

      0cbed521e7d6d1f85977b3f7d3ca7ac34e1b5495b69fd8c7bfa1a846baf53b0ecd06fe1ad02a3599082ffacaf8c71a3bb4e32dec05f8e24859d736b828092cd5

    • SSDEEP

      192:eY24sihno00Wfl97nH6T2enXwWobpWBTU4VtHT7dmN35Ol+Sl:E8QIl975eXqlWBrz7YLOl+

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/execDos.dll

    • Size

      5KB

    • MD5

      0deb397ca1e716bb7b15e1754e52b2ac

    • SHA1

      fbb9bcf872c5dbb4ca4c80fb21d41519bc273ef5

    • SHA256

      720be35cd1b4a333264713dc146b4ad024f3a7ad0644c2d8c6fcedd3c30e8a1f

    • SHA512

      507db0bee0897660750007e7ce674406acf9e8bf942cf26ded5654c07682757b07c9eb767bead0966478abc554dc9a6461c4288dc35d12cacfadad4c128f1bb7

    • SSDEEP

      96:J++xDiP4p7t7dNOt3stxtRFFXxGD6qxlnKE6ttdH3r3:Rx9pJ7jQs5toD6Cln/6tt1

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/newtextreplace.dll

    • Size

      11KB

    • MD5

      b5358341df2cb171876a5f201e31a834

    • SHA1

      df34750ea5504274be5ff8ddd306b49e302d04f9

    • SHA256

      156b9b583399faf13c4d46b89339fb0f7f38dc847ac2d7872178d8e3998b9734

    • SHA512

      821dc42e24fa2d44a1d4d16b26c3da2688dac0fa44a266e38da2aff706c91440d83a87abc74131930e6c38a44a0c5e627db2d045375fde147e0edd3276f4b014

    • SSDEEP

      192:GGhRfigbU26niqo9m+9k15AA1NrW0QfaDx3nxNLr6s+:GIwgSnhv/IaDx3n6X

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/registry.dll

    • Size

      24KB

    • MD5

      2b7007ed0262ca02ef69d8990815cbeb

    • SHA1

      2eabe4f755213666dbbbde024a5235ddde02b47f

    • SHA256

      0b25b20f26de5d5bd795f934c70447112b4981343fcb2dfab3374a4018d28c2d

    • SHA512

      aa75ee59ca0b8530eb7298b74e5f334ae9d14129f603b285a3170b82103cfdcc175af8185317e6207142517769e69a24b34fcdf0f58ed50a4960cbe8c22a0aca

    • SSDEEP

      384:W2mvyNjH3rPnAZ4wu2QbnC7qB7PnrvScaeYA4CIDEge/QqL2AQ:/75w/OfrzB4CUxuQfA

    Score
    3/10
    discovery
    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks