Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    59235141af41313f250d39a900b34389e30acba1bca01465859e0bd7dc5daf23

  • Size

    659KB

  • MD5

    4e91146d12250f89a4392770d4e89313

  • SHA1

    b24be6a2eccfb8c6f7955cd5f6929d44ebcdd13e

  • SHA256

    59235141af41313f250d39a900b34389e30acba1bca01465859e0bd7dc5daf23

  • SHA512

    feb1d1055e14c702c61c41bdcee1c76dcef637abe242a46b56b1547f8a5e2a34225f2562379c785ed040c032d3891e5a003271020d958ed1215b7d00786d1d50

  • SSDEEP

    12288:G9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hw:iZ1xuVVjfFoynPaVBUR8f+kN10EBm

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Lena

C2

94.180.46.70:1604

Mutex

DC_MUTEX-UA0ZG0W

Attributes
  • InstallPath

    windlogon.exe

  • gencode

    wZvu2vV0X3gE

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    windlogon

Signatures

Files

  • 59235141af41313f250d39a900b34389e30acba1bca01465859e0bd7dc5daf23
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.