Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce

  • Size

    2.6MB

  • Sample

    221227-wqgvysah2t

  • MD5

    336aa18330b97fff9c99312ad63c0464

  • SHA1

    af9e917778bf2b87aabaa39a31ec6e2219928a61

  • SHA256

    d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce

  • SHA512

    0d8a65b027f619fe7d0fb186eb5fcf3e7b7c40e4ef1de8b29f548946e314ee2576aa37d1fa2c997fdaecc67c2e95f5c9b17fa8857f1628a32e601866e66184b8

  • SSDEEP

    49152:9+91DmlwRPipQJ8c6DDi6b6Yd09C0KX8Fr9JpwI1YhwnGqsGp6Ku:9+9PSS846YC3XobQ7ou

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce

    • Size

      2.6MB

    • MD5

      336aa18330b97fff9c99312ad63c0464

    • SHA1

      af9e917778bf2b87aabaa39a31ec6e2219928a61

    • SHA256

      d519a1465040232d67e932260f91162b8ef5b9ab9ebbe4931d83a2fe45df0fce

    • SHA512

      0d8a65b027f619fe7d0fb186eb5fcf3e7b7c40e4ef1de8b29f548946e314ee2576aa37d1fa2c997fdaecc67c2e95f5c9b17fa8857f1628a32e601866e66184b8

    • SSDEEP

      49152:9+91DmlwRPipQJ8c6DDi6b6Yd09C0KX8Fr9JpwI1YhwnGqsGp6Ku:9+9PSS846YC3XobQ7ou

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks