Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e9f37b2fc84946f34d78544532546e37_JaffaCakes118
-
Size
11.9MB
-
Sample
240918-zpvbfatbpn
-
MD5
e9f37b2fc84946f34d78544532546e37
-
SHA1
95184fc671df6c4572db9cbf41d008328e54f82b
-
SHA256
edf42b5c9ac99d9bb932c536deb6a5f497450750f032c2e7ef9f9d1cd7b6365b
-
SHA512
f747717d51495523b13dfca1a2a63d7d1bbfdb889959179e6f9ec16b85ae561eb13a61bbc7eab92b3399211063ecafb1c23530e8585b65ae338c511ba0e145fe
-
SSDEEP
196608:72nXXILxqWVdwr94jUI7SUZcCREerOI9bPftgMMoTXKMZoPsnY1pU+9Q2RvR7j:72nINqWVdwra97EerOYTtgJoDKMZoUnA
Malware Config
Targets
-
-
Target
QQMusic/@绿化工具.exe
-
Size
378KB
-
MD5
981dd906e27bffe89fd29e949125dc79
-
SHA1
d7ee9501762ee3060f6c4c6cffc76299a919059a
-
SHA256
171430b39d2cc9cd40ac6cb827a5b4afa4ee49dffec20ff6b56457e93d42417d
-
SHA512
14063413e4125a3883cafe35f1be769797a9e686bc329c18415e967cc5b15618175b32c2d118db4428c706e66412e6a4e146f44b7d04eedd3d39eb63072cd97a
-
SSDEEP
6144:x3Y5RFoIACENSPD8aSwJ7YJG6XoZGYum1oDiXZO3KmNDncFhI:xI5mSPDdSwqJwGY3oDiONDcnI
Score3/10 -
-
-
Target
$PLUGINSDIR/ButtonEvent.dll
-
Size
4KB
-
MD5
fad9d09fc0267e8513b8628e767b2604
-
SHA1
bea76a7621c07b30ed90bedef4d608a5b9e15300
-
SHA256
5d913c6be9c9e13801acc5d78b11d9f3cd42c1b3b3cad8272eb6e1bfb06730c2
-
SHA512
b39c5ea8aea0640f5a32a1fc03e8c8382a621c168980b3bc5e2897932878003b2b8ef75b3ad68149c35420d652143e2ef763b6a47d84ec73621017f0273e2805
Score3/10 -
-
-
Target
$PLUGINSDIR/InstallOptions.dll
-
Size
14KB
-
MD5
107737e3282fefd85684f2fa3df6d1c3
-
SHA1
3befbcae116a644ae28cebdc1d7dfe6be5c8ca5f
-
SHA256
21042be362d4073053bffcc90511b3ecf77902243525b56bb159581b5ece43a0
-
SHA512
439ac2f3066902e08d63dc3061f55063089857e765feb29fe47ba5819a9bebdff3fe2fe55fc8bfcfddb729d340f006ee95b5aa4422d712f9dcc07cc02ec410b4
-
SSDEEP
192:FTmFxiXTQdQbg9FkGuz9lBDpO5DwbgUojcA96lK72dwF7dBG0N1:FTmriEdYQFkGUlI6vojj6l+BGE
Score3/10 -
-
-
Target
$PLUGINSDIR/KillProcDLL.dll
-
Size
4KB
-
MD5
99f345cf51b6c3c317d20a81acb11012
-
SHA1
b3d0355f527c536ea14a8ff51741c8739d66f727
-
SHA256
c2689ba1f66066afce85ca6457ecd36370be0fe351c58422e45efd0948655c93
-
SHA512
937aa75be84a74f2be3b54dc80fac02c17dad1915d924ef82ab354d2a49bc773ee6d801203c52686113783a7c7ea0e8ed8e673ba696d6d3212f7006e291ed2ef
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
10KB
-
MD5
0ae9c427fe7bbbbf1368c1c6d3933ae7
-
SHA1
c8e5131613302531c88512dada29a18886259268
-
SHA256
49437f4b9fd38007f3b2735f0a8a12830b995305c75118b440202980183d5c6a
-
SHA512
59b76b00f2b0d6242dc5bc3cb36d3ff78867445f502e34cea890c6f493c2adf9b97cec539963204ddd1c641e1a77139f46fc33dec4dc636f4b06d2edffffec6d
-
SSDEEP
96:vCCshwlpqUsYghN/9uvZ7CLWNCSiiVTQYBGVXRvuBDlSriklbuba1iLc+cEyzo7e:BzqUuh/uLCXIkYBGV9uVlSblbubbwtl
Score3/10 -
-
-
Target
$PLUGINSDIR/linker.dll
-
Size
6KB
-
MD5
8450b29ee8d592c208ba1aaf6ee50267
-
SHA1
75096da057bc85cef63bb0eec168652ea75cf618
-
SHA256
53aa57e582dc56421c1191a0a9efac9c36960b903b7d825f3b9682605ec2b612
-
SHA512
d23a3057053a1f36f5eb212ae0b09b9b0b41e50b8a6a20bbc46c12c51199ad0bca741bcce17534488158e8f2b9470dbdac2aa059688b7588a05778c40d461039
-
SSDEEP
48:q/XgJspkvsIWyuS3fyVLkmqbIWXGuDNcGo+FLtLFSfrPIk2vIhll:4gJsFIWjS3qVomqIixo+9tLFUr4vMl
Score3/10 -
-
-
Target
$SYSDIR/vbscript.dll
-
Size
452KB
-
MD5
85208932fe4cdfc1ad4a14df82ab1abd
-
SHA1
a886e8605485b28d95e9ba0cc5a516628376fd40
-
SHA256
1786777c13cddf2a3d90e005571a6ea1631e6741228d12f739581e6c171dee41
-
SHA512
55c87f041385bd55672aca81f8b2daaaa5c3332b765fef863ac6578f63f48e166b9b9b4795f36db00c0d8e4f1570642177a0eaf44ae5457a880ab39e3391e398
-
SSDEEP
6144:TFN199PeBsOIGNy+oSIWikz6gV9FZLewqpX+s0MgpEvsmvQ7nqtY5R:JxUEGNy+l7vL7qQsZgpEBQ7nkkR
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
-
-
Target
QQMusic/AutoPowerOff.exe
-
Size
12KB
-
MD5
df44e3df4c844d42df8b97dc366ee106
-
SHA1
6f5e4d0261b05ab0f49d70f50aadeb1c313a2a79
-
SHA256
54ad0c77d189c9ed72fbad94bb3f775ada8d716d8caf95298b062a3d34a44d1a
-
SHA512
ca732e7fe7b284709aff039cc4bf49d776a52882d6d2841fede95ee7e01634ce118d2d8ae9f5a1a65efe0954b8c04aa3ff1fd6c470c1d6c7d94ddb1797b4da4b
-
SSDEEP
192:7A5qIaeuZzcq+twXE9Mt6dkqf5HSfpyowJL/8Qpkqs1Iu55+ebCfN5497X:7oq44EtAE9i6ZHSRYJLu1vPbCzqX
Score3/10 -
-
-
Target
QQMusic/CMInternet.dll
-
Size
36KB
-
MD5
051226502e96d3c0393d8c9e19558708
-
SHA1
3a2f46d8cde925f07a7c44a5ce4f2a660afe23d9
-
SHA256
c6b54c5944658a740044779fb6f8a4b53d9a144f6ae5a0f2cb0fba2cf207c0df
-
SHA512
59112cf25a91c07055b0a3146e9eb087432ebb1fe39b39832e3498bfc234179b4dcd53edee4d1b9cf35ecdd6a28ade5f037cb53cd8be9bc15c18eef89833ca02
-
SSDEEP
384:fuPQILddMfH3YhKx/3vqkevXrXdgwXBjDNY7G+Ova/uknMwFvZ157aNbVMyOge6q:fK20D+wa/u4nlT57KVtOgEI0ZLWHbCl/
Score3/10 -
-
-
Target
QQMusic/Common.dll
-
Size
1.5MB
-
MD5
6b4e911a68d68392e38a1a0f7cd8e037
-
SHA1
f0b5dfd93ae7414ec94020c055a3bc8738d5a691
-
SHA256
e7231340c6a27ce870b754bc94c310b07087bd5bcd96fbe01e6c8185642b983e
-
SHA512
e2a02421981d31e6b998bca0aefb1873cd3de59baea9a4857270da8be35319f0042fee2ce6c50301428eb293573596f81222e206eea6778f4e2faf42171edf5c
-
SSDEEP
24576:J7v8MU1uVTTAW9l7myUz4ou1PTxI9fTF7xjnX32NS:J7EMU1uVTTiJ8M9fTRNWNS
Score3/10 -
-
-
Target
QQMusic/ExceptCatch.dll
-
Size
96KB
-
MD5
a348bdac1f86dae48009e987fbb79ad0
-
SHA1
288a8dddd042399de24a3389c67647c67616aadd
-
SHA256
4ed739d466c8720e065d0a0d6860023b78300f331fe3369244efb66d62614380
-
SHA512
ca7d0701603a4f40f0dca35c89cf52587c9af8b333f7f060c9871ed1f0bb5d52bd9cf49b7ee8e7ac9f8f5ab482b1e56c57f145918dcc7fcb6fc89d0aa3148a47
-
SSDEEP
1536:8bLY4gwABKhG0gRJL6RLyhH5bEmbfj//P2UU3R4JMau9UVOgiI3gfLcrC7zc/Y:8bLY4fAxJL6Rw1E0D/juauWOgiI3Ucd
Score3/10 -
-
-
Target
QQMusic/GF.dll
-
Size
2.0MB
-
MD5
284373929815876edde86e1cbca3f631
-
SHA1
c16a9919c79ffcf483a0a5576a0fb57209202217
-
SHA256
c5d21bd628b01bfba561298bd4eae22895a4e1cdebdb4a229ed55d0018ab3322
-
SHA512
0043332379d33e460a5c22141cc079dc8c33ce3893b65779d45ed90674345310b70efb170ad660c08a7f46e100d573bcbe67383f81a2b1f2bd9f8a024d965731
-
SSDEEP
49152:lVrCpErXB9hcalhQard6isdfcx+XHZwMft4:jLsarXMkxU+
Score3/10 -
-
-
Target
QQMusic/MMInstaller.dll
-
Size
301KB
-
MD5
a1cac21bbf05287cad228bbe9ec99160
-
SHA1
0d703cd332826646b78cfcc4438208bf05663136
-
SHA256
f29a4dc61e1f4a2a09eb426e084528b2bc79668375b12f4892d35d8218799691
-
SHA512
becfd0692bce46525e9997b57f5cf2b5ca2136f8a9bc5cbdd53037d042b7e7b24a954cd1a2b64fc8199950b886ed2821712b31b89598443530732c827a4d124b
-
SSDEEP
3072:4qdhLu2D0hbdzLor0LigLZwJB2agbaYF+8V6kt///eebcpuFh1TBfCxL/5IGtvnC:4qdw20GbOaaaQptn/PvFHTBqR/Pqr
Score3/10 -
-
-
Target
QQMusic/Plugins/DFX/Apps/CABARC.EXE
-
Size
112KB
-
MD5
f2d47b7ed1f315670eb498860b7e1b9e
-
SHA1
d69bdd4ef68d2e670aeab503a0cf3fe879398959
-
SHA256
3ed33e71641645367442e65dca6dab0d326b22b48ef9a4c2a2488e67383aa9a6
-
SHA512
074cba4e59f6641d58dda162fa9a8ac3f9d7312a8cae8bce3dcd5595f74df2aa4975c393c274fd8856ca99dea6199a0f5c726699c53113d205d0eb19ec201198
-
SSDEEP
3072:301H7sMQoXJKKShGidqbOack4HAxGhRNwFYv2d:k1bsOJKKSAidqSxkCA8hRNwC
Score3/10 -
-
-
Target
QQMusic/Plugins/DFX/Apps/dfxwsettings.exe
-
Size
142KB
-
MD5
2cdf32485819612a68459e7bd67f517f
-
SHA1
d884c8a46e9d4919dba52c4cf1b4b7a289acc1aa
-
SHA256
fb42fd37c346ff4f01202f18ae75a2fe87a5a529bd1cbfe83a1345142cbd1063
-
SHA512
87d12cf1a7c47732be7141e49bbaef3a81970a95912192c763cc156c25b97c22b8eba273203f646175ab8fedc6b34128399b5d9ec19da0ce4ddf5681f7ccbb98
-
SSDEEP
3072:65e8jpLapMIwe1OJg+ogT1n1HXpJ+eL0pKy:6U8jlUMIpb8n1HXpJ+eLC
Score3/10 -
-
-
Target
QQMusic/Plugins/DFX/Help/DFX Manual.chm
-
Size
213KB
-
MD5
174359ea2ff9ca3c9225dba16cd6a0fb
-
SHA1
891317f07fb8fa4242f2be9dfe30a9dfb27782a3
-
SHA256
e749b418688efbc51ed47ecf6d2d8cdea97f773416ce141b09cbd2a72c670de2
-
SHA512
8c309073d75564727a14ac540f3ba6cc2c2447c1b853af2a5cab0dfc495bf00d7098a697bc7d79e5758994a6fcf0dfb4d74eb03b6eac44de87e49313108de6aa
-
SSDEEP
6144:uJ2ScEzAHmpordCbSkdwMhTpz/ZInCjKhplUpN0:uNzYmi5C2kGSVLZInmbpN0
Score1/10 -