Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
damianozx.exe
-
Size
716KB
-
Sample
230130-kpwryabd4z
-
MD5
28d7a7385cdafe33d34861bcdabcee81
-
SHA1
0f0a495b38fe627edc624d2baf06dd575bfb6af0
-
SHA256
ff2e4312ff6513d00f4e3959d47e63bff0be7bf3b3faf53d8491ff9129b1f334
-
SHA512
b8cb387514aa65d16e6f3d4818b994f13aadad9772471af161d3a7a653eaa9e778945694af63be58cc5260f207d5166ed912c667b0acd1cd72a7c4c33ae810d9
-
SSDEEP
12288:h8ycoID0OAtfwOpLhdPJ3RgNlAjqOYTyIoI2cUURbBwzY/GWeh3ih9HGA:h8poI3yIGPJ3RgcjqOEyXI2c7wAGBYTn
Static task
static1
Behavioral task
behavioral1
Sample
damianozx.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
damianozx.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
damianozx.exe
-
Size
716KB
-
MD5
28d7a7385cdafe33d34861bcdabcee81
-
SHA1
0f0a495b38fe627edc624d2baf06dd575bfb6af0
-
SHA256
ff2e4312ff6513d00f4e3959d47e63bff0be7bf3b3faf53d8491ff9129b1f334
-
SHA512
b8cb387514aa65d16e6f3d4818b994f13aadad9772471af161d3a7a653eaa9e778945694af63be58cc5260f207d5166ed912c667b0acd1cd72a7c4c33ae810d9
-
SSDEEP
12288:h8ycoID0OAtfwOpLhdPJ3RgNlAjqOYTyIoI2cUURbBwzY/GWeh3ih9HGA:h8poI3yIGPJ3RgcjqOEyXI2c7wAGBYTn
Score7/10-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Suspicious use of SetThreadContext
-