Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

MEMZ-maste...ignore

windows10-1703-x64

3

MEMZ-maste...bin.py

windows10-1703-x64

3

MEMZ-maste...bin.py

windows10-1703-x64

3

MEMZ-maste...ss.asm

windows10-1703-x64

3

MEMZ-maste...in.asm

windows10-1703-x64

3

MEMZ-maste...me.asm

windows10-1703-x64

3

MEMZ-maste...me.asm

windows10-1703-x64

3

MEMZ-maste...ng.asm

windows10-1703-x64

3

MEMZ-maste...an.asm

windows10-1703-x64

3

MEMZ-maste...me.asm

windows10-1703-x64

3

MEMZ-maste...te.asm

windows10-1703-x64

3

MEMZ-maste...er.asm

windows10-1703-x64

3

MEMZ-maste...er.asm

windows10-1703-x64

3

MEMZ-maste...up.asm

windows10-1703-x64

3

MEMZ-maste...ts.asm

windows10-1703-x64

3

MEMZ-maste...er.asm

windows10-1703-x64

3

MEMZ-maste...er.asm

windows10-1703-x64

3

MEMZ-maste...os.asm

windows10-1703-x64

3

MEMZ-maste...er.asm

windows10-1703-x64

3

MEMZ-maste...in.asm

windows10-1703-x64

3

MEMZ-master/README.md

windows10-1703-x64

3

MEMZ-maste...es.txt

windows10-1703-x64

1

MEMZ-maste...te.txt

windows10-1703-x64

1

MEMZ-maste...es.txt

windows10-1703-x64

1

MEMZ-maste...ata.py

windows10-1703-x64

3

MEMZ-maste...bat.py

windows10-1703-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    memz-trojan.zip

  • Size

    47KB

  • Sample

    230216-zhra7sbe4t

  • MD5

    c31e52bf196d6936910fa3dff6b6031e

  • SHA1

    405a89972d416d292b247fd70bbc080c3003b5e6

  • SHA256

    8b47e773a782361209f8adacc8d6aeefb595e1c13ae6813df7de01c20a15c91e

  • SHA512

    a5335c7d3beafdefa6cb1a459736615ca0151fa2e64dafb78de65aa4b924068ad0dc55c70a5317be19edeb899f94ea02e2e54279933b87828ebe86ef95f13291

  • SSDEEP

    768:gaonsrOd+r8/I3lXePW3AOYzGYwX6+AJV0mu52MC:gaOsy+rcIVXwPzmXnA852D

Score
3/10

Malware Config

Targets

    • Target

      MEMZ-master/.gitignore

    • Size

      3KB

    • MD5

      83b09167c32e36043f0f522db4339e6b

    • SHA1

      a2a4c744bee58c38ef73a6984ba5232eaaa84c74

    • SHA256

      b3a75c89a5220328ef95be05402e1143d272dc1485427160c9f56a2587d6795a

    • SHA512

      1f24ad2779b05c90d2c8fe35e40466c5efda0c941d42557dd19ee9f68a1d047d7d12d79f190ba5a962590e20bf5f957d2e9989eef7e4c963ea31077ddc911b33

    Score
    3/10
    behavioral1

    • Target

      MEMZ-master/NyanMBR/Data/Image/png2bin.py

    • Size

      1KB

    • MD5

      6d6d94f38626dd058abc46f146cb7688

    • SHA1

      cf726d65e5946f1767c57a8861c9636cc7dccbbd

    • SHA256

      400047a3ebd0fd331a6049bb6d44bce3479a4f4a6c1fad120defc2426a3556f9

    • SHA512

      a184a26df513bc5ca215bc2084ad660eb94ff4a0dcf916e15477442e199999b25b05ea97c3ccb7d07812ecb8ac682054b99b6dbc204e1745a65d1150a18d695f

    Score
    3/10
    behavioral2

    • Target

      MEMZ-master/NyanMBR/Data/Song/midi2bin.py

    • Size

      600B

    • MD5

      f61a4c22e580ac463d75a30e9fa964c3

    • SHA1

      fecbc581f823dcb0b113c5c9f58bfcb04ab92884

    • SHA256

      aaefe013bfc0d079de26a6ec0722d0d28c30aa849100f95e447bdda0044bb641

    • SHA512

      2afdc98c7d0853b36b151e3fbb80983a812d1d22478ee4ea6390c3a11180b80dfa89321430ecadf6a7d1e22d4722e5700b337a6527d5291d449b541b93f1ad05

    Score
    3/10
    behavioral3

    • Target

      MEMZ-master/NyanMBR/Source/Stage1/decompress.asm

    • Size

      859B

    • MD5

      c17fa191ca99b0eaf597f75e7544e3b9

    • SHA1

      5460b16d9526e7c61699848e144fe724c7424bd1

    • SHA256

      fcb1f43663ed9b3d12503cf328514a6879899286797d7c02f3f62f6a54458fcb

    • SHA512

      63324a1609fd0e0682378df9b57f2ce02fedacac119dd190b0c9ff2b3a8a8a01a62ca000f8a9e65249a54ad7abdc1fbfc00c92a8d084c068cb129c769ff97053

    Score
    3/10
    behavioral4

    • Target

      MEMZ-master/NyanMBR/Source/Stage1/main.asm

    • Size

      603B

    • MD5

      eeb3c92fc836e1c9fb8c42cc74ffd2b8

    • SHA1

      c27df6c0472f3962f65f67106c0f0e01150b55c3

    • SHA256

      83563264bb952406e936c2e97b6bce0ad0b1eaccc1cfb2c073ee80f603c9773b

    • SHA512

      a96d5c82200539d56c4de5d4c9a358a170e025d672a6e9af94743217dc0d3d1d6be06f3e7cf81aa386a0c9ac5db8fc80afcfb518c2b299b0af4d4b2484a4a8a4

    Score
    3/10
    behavioral5

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/Image/drawIntroFrame.asm

    • Size

      400B

    • MD5

      b7f8578312d53d47470ca7e0fd84c793

    • SHA1

      c240c2583c42c6075c1b297b575895399fcad783

    • SHA256

      ce225eb4419aeb6edf8df705b638b93536e92fc2c32a8a57c80d0ebaba494a31

    • SHA512

      bd8c92106fe21a2279e73193fdf788ab907b7be91b3ebfb37439f09d99a86fb584f9d7f81b15f5b88bca8d76095bb8e2093af41113d1c23c452dc43b4f88fa19

    Score
    3/10
    behavioral6

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/Image/drawNormalFrame.asm

    • Size

      392B

    • MD5

      762b14a2a86ccc2ec73f1cdb5d9dded4

    • SHA1

      98506709c1331fc4e0baa77f78b34b0005717d4b

    • SHA256

      5c53d1185fff89016918d831e56de58aad21afdf9a87cad2fa4ad24eb3a5f2a0

    • SHA512

      2006c6e212b07abaaddbc053715f16d6372f37451597a7e38852cd0cef069364677a0f826c24935271ed927af83b9b339f88a7eb97d9f745ab385aeddeabeb7d

    Score
    3/10
    behavioral7

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/Image/initDrawing.asm

    • Size

      369B

    • MD5

      62508871f51d1c7c4a0fb60b7735e1d2

    • SHA1

      ffed1ba54e1e936dd32cd3f8a1f50a6c84fb92b6

    • SHA256

      d97b8217b569eb4591142ed6f60cc14b75a168ffb71c3c131cbb6904c2cf3df3

    • SHA512

      42a75ed60d78c06b1a2b749573cd2129ae6ae6972afa36a3f8b5815e3f6239dd946caef9e14a0651e3efcf5be9447e22754bd7c3ce5ade7c7b16c46c1e3e2d45

    Score
    3/10
    behavioral8

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/countNyan.asm

    • Size

      609B

    • MD5

      824ee95d48ce12d83f855a36a822e4c4

    • SHA1

      1cb4534a2eeb5f30d3b37297af7c5e06c77e7e0c

    • SHA256

      acdc4d6ab3fe76b9c3562869c638aed5499ce1e6d84dfc54124834855fe68b1f

    • SHA512

      cc35676b335a70756e88cfdc1812d541aef655c4c2bc6b9e101d6ce6a93458f780365d7f3cefd736262f2dc0c3b51961e84adebaccddd2ef234bd587614d3396

    Score
    3/10
    behavioral9

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/displayFrame.asm

    • Size

      902B

    • MD5

      dd378000b71947dff17a89374822f58f

    • SHA1

      0062a39551e6d4f6c1ff78f59f4de73c07ebbba4

    • SHA256

      8cb9070d8fe5287a8039e3f3ac626f7af96785323caddef35466cd87407951b1

    • SHA512

      e664200cf598f65a990c725cd43fffbb13017cee5d557515fe16eeb1fe7ab2b2b1b8ca1c91aacc06aecdfcfa4853b9ba93b41ac5a342804522364cf304437741

    Score
    3/10
    behavioral10

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Animation/playNote.asm

    • Size

      449B

    • MD5

      aab218c275452e7836b9ad8abaa61d59

    • SHA1

      a35bc4feac53d0d84a06bddd447b366d4ef104fa

    • SHA256

      a8f9977fcfe64dfe44b60e4ae57147c036b46a2d5b2f35757d3a215a8212411d

    • SHA512

      dd55addb5e9240af4768996c02688c842d9f287a1874b148ad66df311c95e9345b16c905b74f35195bc7b324efafb67e750f62955d17acfa63d7e8767e7091a9

    Score
    3/10
    behavioral11

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Interrupts/keyboardHandler.asm

    • Size

      239B

    • MD5

      973cce0ca5ea55216e27c589df381acd

    • SHA1

      a310d05b62e28fb54cc1e2434dc63cbb0e23bd88

    • SHA256

      c87cffc5428cc816515f1cea6bf99486c84971e305e2c8b4ccbb76bce6599162

    • SHA512

      cb3cb9aafdf86f1979c97d6b87a3d42207f7c7ef9903ba0a6753f65b89e7fd6bbca761836e5c2b4dd0c3dea2e70522a98d6e0390254305e6deeb4a4b2da9f504

    Score
    3/10
    behavioral12

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Interrupts/timerHandler.asm

    • Size

      368B

    • MD5

      12429977e0b55d93549c99863c5c05e1

    • SHA1

      431f796c0b2a13fec5118049d75afa222a960288

    • SHA256

      17290a8530a2c7c0fb47d92e188fee42bd03ae92fb952e4fee1f78ca1a225bb9

    • SHA512

      2d47f3e130540ed315cfd45ae6d733e49bd4fcc35cf872bad7f3a5d63909af68600846963dc50331be32c9305f73b02c4a4b1692ce289c7f2f91c8695dab5725

    Score
    3/10
    behavioral13

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Setup/setup.asm

    • Size

      350B

    • MD5

      8b96cc5c40397271e1a654b8935a4417

    • SHA1

      3bc001f743b6699d59db9dcad900ca3660bc1804

    • SHA256

      bfff992e26badc46d01d04d2ae8e1c28715a903113f9627d27217877124d930c

    • SHA512

      1ab42f138756124299458f4435c16a9fa1991d053f28a29b69f1ea84e4d70e8206f307d931bd12f5530c95794b9cd4e9f9dc5b63913dad57bd3d3189331746d5

    Score
    3/10
    behavioral14

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Setup/setupInterrupts.asm

    • Size

      197B

    • MD5

      5e31196506a9a4a3f59f0d8a8a1c1004

    • SHA1

      be406ff481437c211ed510d93b683f0f0ad279ee

    • SHA256

      0a1ddbe5ae813b4cdcdb67d62ae36bed8c36aa2662308a0860dc73dfd0d18f02

    • SHA512

      e7d0171e2be53f7fc847449347e1fc94a68f0588cb820ea58b1acd2aaf75b7496eb4a274a0e8a8cf824e76bab86db0dbafe677abfd1ec9b9a722e058a30cbebd

    Score
    3/10
    behavioral15

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Setup/setupSpeaker.asm

    • Size

      214B

    • MD5

      fe86e234451b6d0655368c50dab7d88e

    • SHA1

      26317f7ddc6add296c1df039f2ffa8bf41ae846b

    • SHA256

      cfdd806a114d75851503ae3bdc3fd070ef3dcd8da055bf7e24c3d4bc991d5892

    • SHA512

      0f26cf0366683cbd64fea210b0865a16b3e07ed30229667b569e8a07a67c5aacbf693c130d369906a25e9342e2ac96a9d8655eb68bf6d63e768348aa387f2999

    Score
    3/10
    behavioral16

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Setup/setupTimer.asm

    • Size

      45B

    • MD5

      ec579ce072a58fdfa4915d8ab3d1fe2d

    • SHA1

      dfee5d1846556e59771c4a0c5587ce8c281d4e2c

    • SHA256

      48ef61de666bdcf95f801a546723085f8fd7b269fb74dd980bd5c061d77bd939

    • SHA512

      971ad8f924bb769babf8921fdc8ea5273ac9e017a0b345f5b079c40756ab6e51928d86900e073826ce3e4c40b23a21f427ca7b62fb471096ae8330bad1a5cf60

    Score
    3/10
    behavioral17

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Utils/macros.asm

    • Size

      438B

    • MD5

      2dabbc455a0fb09e0608abc1de0c8984

    • SHA1

      1b31614f7af3dc36ed7fdb5cf9f1e3cbc16dc141

    • SHA256

      58fa451337e7d634155683cb28dd840fcacb32ae270fae0a7464d2a668f9d013

    • SHA512

      1bf68bb557df5b10284de15a4d1276fee2871a90b5a3ff1a7cb82c51fabd643e05c24ba79ea0a586879d036c0082b05e11aabbbfa8b8ee5311a040a0ef6d16d4

    Score
    3/10
    behavioral18

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/Utils/timer.asm

    • Size

      686B

    • MD5

      6e16b6ef22ba57be9a05192541b15951

    • SHA1

      38a1ae0880c59f6984e5f1c320838ad79998f2c8

    • SHA256

      c73a68271686ac57b0408b5d5069878298723edf5bb9c2fe48bcaa8c8946b468

    • SHA512

      d1f7b913a3b512f462ba13568ca8bce0da286575fe980db1425cfac249f122cdc072cc07be6749e66b2fa9936139016d620ef9d586f148cf83001788bd5874e2

    Score
    3/10
    behavioral19

    • Target

      MEMZ-master/NyanMBR/Source/Stage2/main.asm

    • Size

      1KB

    • MD5

      1eb667c4bd06b25b5455189d091df217

    • SHA1

      a9c9282e49a331d597af8a0d11dacf33a3e0942a

    • SHA256

      584068da0f1eea25d1a639174fdf06937e91a62672cf8f0ef3892816c4245488

    • SHA512

      5a9a3c956823bbd1d46bc2918b98027aa402795b9977da5d7ce0d000cc805c743c342f03e6db40c27904eb570ffd6fdfa9e5ff5aabb4d6724d1be4e406ff1e08

    Score
    3/10
    behavioral20

    • Target

      MEMZ-master/README.md

    • Size

      1KB

    • MD5

      4961921bf68139c1e68110807ec172e1

    • SHA1

      dbeb3a07af93288e9735e503e93b4d35c3fd8dc0

    • SHA256

      64c92d28bca81da5632208eec51126fe60ea88e790d381b9165accffd30c98f5

    • SHA512

      b8fb2e5329eafa30f16166a0c88eee1d3a422401d008b6a0580f0012dae6d37aa7c473b981c75d2394f4bdf91b23552250281760a65bbbe50b692abd90f5e193

    Score
    3/10
    behavioral21

    • Target

      MEMZ-master/WindowsTrojan/Data/KillMessages.txt

    • Size

      885B

    • MD5

      b3329141186bcb2812b76eec282ec344

    • SHA1

      b760415c1819f1a7645ff9fac2e0c5e559010b35

    • SHA256

      d7d0cd4bae403d48848c1e6ebe5f635013b3613acd020963d7f246ac6bb97a89

    • SHA512

      e81e140cbfc5d469941a5a5af8e4fa1eccada50a080ae3c24d2022dc65cf7b837230d7e3f14125e50f48218082dd865661d4a73fc8d8a5bdd866cc00a82370e4

    Score
    1/10
    behavioral22

    • Target

      MEMZ-master/WindowsTrojan/Data/Note.txt

    • Size

      209B

    • MD5

      e51ce78fa9cc0be4f0ad3b5585611201

    • SHA1

      031861dbffe530cbee2fc44fd8125acf5c89bba3

    • SHA256

      6245e9a583158efc0011dec59838eb23ccda5260744fa266dece8c5b07f8594c

    • SHA512

      bb029265bf56a6b4952560a8c2c1ab8b19addc2d03d5fa5bfda4a7b33276489e2734ec3ee1ba9cd9dfaf57bd92e72e42717c2fff7e8057d6b19723f0833bd134

    Score
    1/10
    behavioral23

    • Target

      MEMZ-master/WindowsTrojan/Data/Sites.txt

    • Size

      2KB

    • MD5

      d35a6b9d752056a1a440195811f1f9b9

    • SHA1

      a8a70c1229307a9d24e3edb6a57ea84efc69e350

    • SHA256

      41bc23ec015c6d6aa4671a9512c208f7a2a0ffb16fc8504460c1f97f1023318e

    • SHA512

      963f0cfed285b2b6151d9a2f1819da8551719639363c9438838d2c15881ac0bb31ee54ee55b712262873b18c5c1bf76165beef32aa53639b2f67176bfecfc1c7

    Score
    1/10
    behavioral24

    • Target

      MEMZ-master/WindowsTrojan/Data/genData.py

    • Size

      2KB

    • MD5

      81152303b2de9d9e11b16bce7959caec

    • SHA1

      057cd5af3edae158399c7b9da942e1ff72be0210

    • SHA256

      2076deedc4d01647f3eab8ad7fa950ee1db3f0eb9f23556bc1b9ae643b73a9c7

    • SHA512

      c15f889bec69b86d6df00e879094d5b58302c8a07e8f97ad852cd4f8dc99e6231c78bb6f6577fbe4cc3bbb17e6e797c1eeaf976faf83a841a4e4af1b7cdd2b42

    Score
    3/10
    behavioral25

    • Target

      MEMZ-master/WindowsTrojan/Source/exe2bat.py

    • Size

      2KB

    • MD5

      d36aa007ebc8489f62d8de501cde8f2e

    • SHA1

      d64df27d02d9d96f7a47452b38aa3b92d50997a5

    • SHA256

      9403d047e2c8b47ff80a821c10d7e2ec4ee36d9267b8ed693dad9c5b8c5fc993

    • SHA512

      31da546ca83781cbd6a9f58114116007a8557167a8a4ca402b7e79958d98481698ae0bfd229f655c52ab8cc106cb344fc0c6005b8508d87bc62f6b61f1438d05

    Score
    3/10
    behavioral26

MITRE ATT&CK Enterprise v6

Tasks