chinese_generic_botnet | 02dfd5448fecf132e9c2062dce335945d220e7fd1a0ab0885ac20d409da02bbf | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

nouactelegram.vmp.dll

windows7_x64

nouactelegram.vmp.dll

windows10-2004_x64

Sharing

General

Target

nouactelegram.vmp.dll
Size

5.5MB
Sample

220210-swp7qshbdm
MD5

52703c8091a4e3ac70d95c6acbf7dd0d
SHA1

671467744181cd12695db8e5ba1d79b0d83271c0
SHA256

02dfd5448fecf132e9c2062dce335945d220e7fd1a0ab0885ac20d409da02bbf
SHA512

ae54f063f36e13f6f04971b54dc19cb915a774dd0f35035c13ca61ce716515b9740695cae5035ff66bc5a44cf9c9d4979f21e5eab2409920cb0ec0fdb781bf90

Score

10^/10

chinese_generic_botnet botnet

Static task

static1

Behavioral task

behavioral1

Sample

nouactelegram.vmp.dll

Resource

win7-en-20211208

chinese_generic_botnet botnet

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

nouactelegram.vmp.dll

Resource

win10v2004-en-20220113

chinese_generic_botnet botnet

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  nouactelegram.vmp.dll
- Size
  
  5.5MB
- MD5
  
  52703c8091a4e3ac70d95c6acbf7dd0d
- SHA1
  
  671467744181cd12695db8e5ba1d79b0d83271c0
- SHA256
  
  02dfd5448fecf132e9c2062dce335945d220e7fd1a0ab0885ac20d409da02bbf
- SHA512
  
  ae54f063f36e13f6f04971b54dc19cb915a774dd0f35035c13ca61ce716515b9740695cae5035ff66bc5a44cf9c9d4979f21e5eab2409920cb0ec0fdb781bf90
Score

10^/10

chinese_generic_botnet botnet
- Generic Chinese Botnet
  A botnet originating from China which is currently unnamed publicly.
  botnet chinese_generic_botnet
- Chinese Botnet Payload
  botnet
- Blocklisted process makes network request
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

chinese_generic_botnetbotnet

behavioral2

chinese_generic_botnetbotnet

© 2018-2025

Terms | Privacy