Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b55b4b13c258da767e6de18ce19005034415b92551a1ce70eb988e3998ff2d61

  • Size

    144KB

  • Sample

    221003-wtmklsadbk

  • MD5

    60da4ae733b561552c144980ecb9ab67

  • SHA1

    8af21c0146c9e013082cb01ea8adad8e96a2f419

  • SHA256

    b55b4b13c258da767e6de18ce19005034415b92551a1ce70eb988e3998ff2d61

  • SHA512

    42df517a9005c3e68ad260db372757ebee53b53c3edd6bb208100cf95ab8f582d5e9b1491a120b5265aea3406224e2625dc9e743681e891f971394d2054bb353

  • SSDEEP

    3072:3gSWphvhcWZ+f4jIL7CmoQJddDhAt9j2Ux+Ye/zauiU:JWphIf4j27voQtla9f6au

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      b55b4b13c258da767e6de18ce19005034415b92551a1ce70eb988e3998ff2d61

    • Size

      144KB

    • MD5

      60da4ae733b561552c144980ecb9ab67

    • SHA1

      8af21c0146c9e013082cb01ea8adad8e96a2f419

    • SHA256

      b55b4b13c258da767e6de18ce19005034415b92551a1ce70eb988e3998ff2d61

    • SHA512

      42df517a9005c3e68ad260db372757ebee53b53c3edd6bb208100cf95ab8f582d5e9b1491a120b5265aea3406224e2625dc9e743681e891f971394d2054bb353

    • SSDEEP

      3072:3gSWphvhcWZ+f4jIL7CmoQJddDhAt9j2Ux+Ye/zauiU:JWphIf4j27voQtla9f6au

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UAC bypass

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.