Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

lolxc/LOL�....4.exe

windows7-x64

7

lolxc/LOL�....4.exe

windows10-2004-x64

7

lolxc/LOL�...XC.dll

windows7-x64

7

lolxc/LOL�...XC.dll

windows10-2004-x64

7

lolxc/LOL�...xc.dll

windows7-x64

7

lolxc/LOL�...xc.dll

windows10-2004-x64

7

lolxc/LOL�...��.url

windows7-x64

1

lolxc/LOL�...��.url

windows10-2004-x64

1

lolxc/LOL�...��.bat

windows7-x64

1

lolxc/LOL�...��.bat

windows10-2004-x64

1

lolxc/LOL�...��.url

windows7-x64

1

lolxc/LOL�...��.url

windows10-2004-x64

1

lolxc/下�...��.url

windows7-x64

1

lolxc/下�...��.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d26931d0450252590a7090c46d70f951_JaffaCakes118

  • Size

    13.8MB

  • Sample

    240907-vga6dawfje

  • MD5

    d26931d0450252590a7090c46d70f951

  • SHA1

    6f0d8feeb3518c12e2c77bd2fee343f4e355329d

  • SHA256

    1870b01e34e63e03d493053e9dabf6236abbc7db134ceb17dbf70bf014d7d7ea

  • SHA512

    60d7109f4e84a6e13c0e4422d1f81b069b7e1e8b795546ee39ee0519bec4dea4f86ac1e049b3d27e7e9d9f8eab8ad1875cad418a3f7f4d5c1371087c2007a88e

  • SSDEEP

    393216:BYdfTLj6LqLA9IOxY0cMWlrQnram7nTeE1X9tDhrAVvy:aN3jGqLA9IX0clhyTeE1xrZ

Score
7/10
discoveryupxvmprotect

Malware Config

Targets

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/LOL星辰辅助超强脚本9.4.exe

    • Size

      13.9MB

    • MD5

      33bce60b3b53716fb12d7731ea5fa5e6

    • SHA1

      05c22f10b85c96008f87ff689adcf9b017278084

    • SHA256

      a8838e3154fbdf8c0e1cbbb265926d703c90e9064f2e07cccc8cd99dd1b223db

    • SHA512

      ab75dcb7d930f9833aa6c9c0b24b20220e296835b0d07f8c8d6bd968ff86298f753b6af2a853b3ecacdcac7590083193b2c8729de29e92beb9f7965aea9e107a

    • SSDEEP

      196608:zT4tNUGi3iRO7pjPovaaMV2WFcqlBT9gbD7JVuWGRuGOlO8RZDX9:4TCiR2pr+aaMVbqf7ZTrZDX9

    Score
    7/10
    discoveryupxvmprotect

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/XC.dll

    • Size

      2.9MB

    • MD5

      2305a0666ee61c846ba2dade346e2980

    • SHA1

      046e141d52f968a6e2080b1d66dd1bff7f1879f2

    • SHA256

      b6edeb6fb97d3cfa1e0af0cdbaeac6f143022bac2d733805c92c6ee8498023be

    • SHA512

      6513693fa096d23c9ad18c2f9b4ff35ab83119487d8456d7a1a5b385d11606a4e431185a467276535010dcd1142c6988c0427536d145be69e3011f4296fb9336

    • SSDEEP

      49152:OnKOgOS5kHe+TMEpLlLZZ8gvU7YYOgD8cESZzGhiEfzjPuXfR6YvPSahKE3Z5sEV:OnKT5kRLriRO7AzMjjPovaaMUZ5s+LCe

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/lolxc.dll

    • Size

      369KB

    • MD5

      fbc493308cfa830a22ccdb67d86b705e

    • SHA1

      e6706182f48800cba8a6339f00b3ccac9fd4ec6d

    • SHA256

      b7d03cbb5c0201020c9775e7027969e7f076ff0250702427c172d19e19a10c34

    • SHA512

      76a8d5988a94aba8abbabba27fcec5c374c46586f94cdee17b1880307fcc829795449bf284afc0f4e44794124a954dcb96caf846a0eba3cda14427bb72909911

    • SSDEEP

      6144:o34tMU0GBeE8HmknK2h01GRny0zSyKO8MRWt8:i4t4/JHmd001GRng1BK

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/使用说明/必须安装的组件.url

    • Size

      216B

    • MD5

      4611675af6ef6800e4b53c886045afa4

    • SHA1

      177680fd0787b71c114299d2731958639aaeae0f

    • SHA256

      f4a4634d0d9c336de0ba12ccbda45b7a326c920c05f85ee3e68b5cd32458dd14

    • SHA512

      1adfcd2fc93e26511b6f114dd02fe61889c8854cd6aea61f69dd8072a7586e85dae1835a9b5ea3e16ad88fe4ba435c848086cc1763fec67baf44788e59ab7a9f

    Score
    1/10
    behavioral7behavioral8

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/使用说明/插件注册失败打开.bat

    • Size

      28B

    • MD5

      16610974828b7bbff2b1a28c3cdd0b37

    • SHA1

      8c368cfda55ea7ce1723e7e11d1cf5c9963e1694

    • SHA256

      95283d484cf1d97318cbd6ae8da7f4ed5739012025cd6519e832fe3b50bf6e5e

    • SHA512

      fd8c88650679f4263fbcddbfd793c22d4aac89e5caf4e03c29773dd1b0b6df27238d5cc74cdccb3a62c9bb986608cf23afe94a4bcfd341d044788d33b9923cd8

    Score
    1/10
    behavioral10behavioral9

    • Target

      lolxc/LOL星辰辅助V9.4【超强脚本+超强躲避】/免费天卡赠送.url

    • Size

      267B

    • MD5

      e4bbe411f00bab030b7391071afb0b25

    • SHA1

      eb9f60449750d92ccadfb6ce95b20fa8f9f3157d

    • SHA256

      d0c9e35710f800b7868353dc6f170e0258e5efa4cd99a79c6ac9fc40175ffc74

    • SHA512

      a6236b745730efbbfb8ffd7580ecc2549511b6d9e25f30dcdcbafa082b2c3ab22044a7e8cd8bbb59f797433e869d533192202efb217b4a6c7c48e87bf9ada26f

    Score
    1/10
    behavioral11behavioral12

    • Target

      lolxc/下载银行-提供免费绿色软件下载.url

    • Size

      265B

    • MD5

      8198b90729a29a180d83f169e44bf4b4

    • SHA1

      808c7001a47365ed66f763540472f71c8ab8f3c0

    • SHA256

      0472fb354a075029d538acbdd78064da47a19487e4efcaa513417232036ad656

    • SHA512

      8191fc06f76f598a0f3022115f9904feabce5ed9e5642557a245e279aecd1e447bf359f17b5237fd52117438dd133a214e53886769f97ef3a5850d4e50bef502

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks