Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2e1bed31a391e4f0cf425c715a366f0c_JaffaCakes118
-
Size
1.1MB
-
Sample
241009-kl71sszfjp
-
MD5
2e1bed31a391e4f0cf425c715a366f0c
-
SHA1
f855c3d71cb64c571ee73e3646d84252bf0e5b1d
-
SHA256
cfa7ea102455a67f1a7738eda8261f1c2cf3b825f917d785fd09cbb6b579968a
-
SHA512
272346dbcd0bf1d46dbdfe62688e4f24a92ef842770fb256ba28548782769a5261575f949c975cc2273d0553db653397014d32c69e4b221bcdc3b34e88f20332
-
SSDEEP
24576:s/xWkO/r/v2j1kqbgf4ElgZURiMXZudrQ0U+QsaY5ZN17EAae7/j0:s/FI2JRk4FIivcLsaY7c7eP0
Static task
static1
Behavioral task
behavioral1
Sample
xkcf/小可穿越火线刷钱工具V1.01版.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
xkcf/小可穿越火线刷钱工具V1.01版.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
xkcf/飘荡软件.url
Resource
win7-20240704-en
Behavioral task
behavioral4
Sample
xkcf/飘荡软件.url
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
xkcf/小可穿越火线刷钱工具V1.01版.exe
-
Size
1.6MB
-
MD5
716dd24043492316052063a9f3f6def3
-
SHA1
29203d6c1538e34b3693c3ad48dbe86955ab2445
-
SHA256
61720c34221c0ace15b02600ccd2627147bf2717226bf99050d78b388f6d1de6
-
SHA512
99ad0a8384f0f72ccc2f4beb8e94e1faba9fc736c07e46025f1b72ff16e5fd8e592a56cee006280956e76393c631542d61ca691722ab686ec904bf2197b76ebb
-
SSDEEP
24576:8zLvFs9bDe5CvCL9efEMQTZaqdiXSp0c02uFG6dAk356jT:8H9wXaLAfaTZaqdwk0c05HGi0
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
-
-
Target
xkcf/飘荡软件.url
-
Size
328B
-
MD5
e97aad722245bfc4a60be0e6f453be6f
-
SHA1
c7b7c9585109f71526ed65616668ef7573841d9a
-
SHA256
3f6b8de5ca595a2e7371396fcb22b303e0f664733aabc940657c33324d5f269a
-
SHA512
f151b723079fc09ac4b44c540b278b8c273f3958d5b661a6b30e31b119dca6d017ab0f987c52c60cc46e917ef9626e943971017d8e1dfe11c4cf27b93a2c772a
Score1/10 -