Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

Zoraraa2.2.zip

windows11-21h2-x64

1

Microsoft....re.dll

windows11-21h2-x64

1

Microsoft....ms.dll

windows11-21h2-x64

1

Microsoft....pf.dll

windows11-21h2-x64

1

Newtonsoft.Json.dll

windows11-21h2-x64

1

Zorara.dll

windows11-21h2-x64

1

ZoraraUI.exe

windows11-21h2-x64

1

ZoraraUI.exe

windows11-21h2-x64

1

Resubmissions

21/09/2024, 17:33

240921-v4z31svcqr 6

21/09/2024, 06:34

240921-hb2d6ayhjf 3

08/09/2024, 21:18

240908-z5zwvswarl 3

05/09/2024, 18:48

240905-xfr4lsxcjk 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Zoraraa2.2.zip

  • Size

    25.8MB

  • Sample

    240908-z5zwvswarl

  • MD5

    60998608c92a3152da8c74799d69f7d9

  • SHA1

    740176948082e70efe2dafd6a92942fbdd6cf766

  • SHA256

    c12bdfc94c307beed92b1b7c9478b58a8b5c9d8521c028743a6744101215d19f

  • SHA512

    87763e7a9e37ae8614e82cda4dccd8dcc58ab49309c07f257967aef40c0faabaad7d1600660fa7b177baa56bb4b2c73ab14cbec6d1f9638368b54f27d6aebbde

  • SSDEEP

    786432:Q9H7en4YGNeLoVv54u7r9HmMXb9teNgZsyWn:WKnd6eLkB4u7r9HmXvyU

Score
3/10

Malware Config

Targets

    • Target

      Zoraraa2.2.zip

    • Size

      25.8MB

    • MD5

      60998608c92a3152da8c74799d69f7d9

    • SHA1

      740176948082e70efe2dafd6a92942fbdd6cf766

    • SHA256

      c12bdfc94c307beed92b1b7c9478b58a8b5c9d8521c028743a6744101215d19f

    • SHA512

      87763e7a9e37ae8614e82cda4dccd8dcc58ab49309c07f257967aef40c0faabaad7d1600660fa7b177baa56bb4b2c73ab14cbec6d1f9638368b54f27d6aebbde

    • SSDEEP

      786432:Q9H7en4YGNeLoVv54u7r9HmMXb9teNgZsyWn:WKnd6eLkB4u7r9HmXvyU

    Score
    1/10
    behavioral1

    • Target

      Microsoft.Web.WebView2.Core.dll

    • Size

      557KB

    • MD5

      b037ca44fd19b8eedb6d5b9de3e48469

    • SHA1

      1f328389c62cf673b3de97e1869c139d2543494e

    • SHA256

      11e88b2ca921e5c88f64567f11bd83cbc396c10365d40972f3359fcc7965d197

    • SHA512

      fa89ab3347fd57486cf3064ad164574f70e2c2b77c382785479bfd5ab50caa0881de3c2763a0932feac2faaf09479ef699a04ba202866dc7e92640246ba9598b

    • SSDEEP

      12288:6CxswUBor35JrpQ322zy+uFKcDoRFNCMmeA+imQ269pRFZNIEJdIEY0lxEIPrEIE:6Cbmv

    Score
    1/10
    behavioral2

    • Target

      Microsoft.Web.WebView2.WinForms.dll

    • Size

      37KB

    • MD5

      8153423918c8cbf54b44acec01f1d6c2

    • SHA1

      f0c3c5412b809725e6d4809230adb15cc7d83ad2

    • SHA256

      5696366f7458da940cc986dc5d3d4549a2368512acd769014ecbb07b47bd88b4

    • SHA512

      f3dc771e37c71479d332142ec5a9c5c3f39ca71937f595a0f7482ae5aaaafd92e932efc9b0363d4511d547f3c8b2e0497ebbf8356e7d07fc344f4e5715b0ee87

    • SSDEEP

      768:1sjCEEHJ9l0EeFZ2sxIHzttZDgcEST3p4Jjrjh2jJ+SG2au8vxJKia5/Zi/ZGQKk:wCEB15azttZDgcEST3p4JjrjaJ+SG2a/

    Score
    1/10
    behavioral3

    • Target

      Microsoft.Web.WebView2.Wpf.dll

    • Size

      50KB

    • MD5

      4a292c5c2abf1aab91dee8eecafe0ab6

    • SHA1

      369e788108e5fb0608a803fa2e5a06690b4464b5

    • SHA256

      b628d6133bf57b7482a49aa158e45b078df73ee7d33137ac1336d24ac67ed1b4

    • SHA512

      ca22adfff9789730e4c02343e320d80b8466cfc5a15f662cefe376b7ee29dea571004c1c26cd3f50c0d24e646f2b36b53fa86835678f46f335d65eec52431cde

    • SSDEEP

      1536:gpGhWMhWLF9jwKi8LDP/ryEH0GBy4JjrD1aah/UaOzk6hKKa5/Bi/IGCv0Z0T6Cc:taBi8LDP/b0GBy4JjrD1aah/UaOzk6hz

    Score
    1/10
    behavioral4

    • Target

      Newtonsoft.Json.dll

    • Size

      695KB

    • MD5

      adf3e3eecde20b7c9661e9c47106a14a

    • SHA1

      f3130f7fd4b414b5aec04eb87ed800eb84dd2154

    • SHA256

      22c649f75fce5be7c7ccda8880473b634ef69ecf33f5d1ab8ad892caf47d5a07

    • SHA512

      6a644bfd4544950ed2d39190393b716c8314f551488380ec8bd35b5062aa143342dfd145e92e3b6b81e80285cac108d201b6bbd160cb768dc002c49f4c603c0b

    • SSDEEP

      12288:mFIM0KteTMN4Or4D3OdmZg5WHEaEDIGBBjgrIQtD+tVqDMW:6zMTMNNd+g5Wk78GBBjgrIQtDF

    Score
    1/10
    behavioral5

    • Target

      Zorara.dll

    • Size

      14.7MB

    • MD5

      307d88738588c6e92dd314f1def2d948

    • SHA1

      ec91c9edc1fea9fad3a6a07aaab9e1601865674a

    • SHA256

      0b1f2977a3e0d737fd91048379ee2e6277b8b4675091b3f4413dfc2fc9dd8f00

    • SHA512

      f3d020c58fd1b7c8c1c91e59d4699ad05012f5c4ea59cb3c3546aa29e1e90165af13908f6a1461f24c923ff00da15ad26a1c28e6f3c70f24cec71117ebcce67f

    • SSDEEP

      196608:2rqkTIEXyMe4yI0wQ4QtZYyc17EOa8a3BCZadMfs9k4bqwOmJUhpi5v7Q:2rVsEin4ZQ9Zjc9FKxC8ME9nchM58

    Score
    1/10
    behavioral6

    • Target

      ZoraraUI.dll

    • Size

      172KB

    • MD5

      d57a28c2ffc3644fd298be1aaea49caf

    • SHA1

      34beb784f098c4c3747bd260b818305665856c86

    • SHA256

      f8bfb11e61e1d8f137a7ec9cc137a73be32d361b0f7f9941d2543a44f1d5c566

    • SHA512

      b396c5f163f21c2d1472622339bdeef706214245c9cce64e2fb6a4ca8b882f6ef16730db0affb9c10a39413c878d39fd048e44d1fc9ea5e840fdd18abacdecc4

    • SSDEEP

      3072:9XxSmq+T77TLtIMW07j5by64ymYwSKoIXK:9X8B+n7TxT71by64yN

    Score
    1/10
    behavioral7

    • Target

      ZoraraUI.exe

    • Size

      254KB

    • MD5

      a64cafc6b2f823a091535cd9d31b5184

    • SHA1

      f8e7e04ae3a4280526a72ad81be47c3e1cc11d96

    • SHA256

      e2db764d50b8b1e729e6ecdb3a77d00aab4366d0f9396e85854e72a36a569350

    • SHA512

      c07fa353adf0ce62caa49597cead3ddebc2abafcbb60f595629a2dfbe1c960cb4d9bcc2edaab06b19e0932016c754a006e41c9c85e41b7517a2f029cc63f21cb

    • SSDEEP

      3072:GjK4UGDHXrQ8hy7qgpHulWD9ZvZ5Pf3Ca10xuZ04ntfOBhBu9mYwSKgIwp:GjK4TDUqgpqWDLZ5H+xuZ04ihA9N

    Score
    1/10
    behavioral8

MITRE ATT&CK Matrix

Tasks