Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Resubmissions
24/05/2023, 19:53
230524-ymb7eafa8s 824/05/2023, 19:52
230524-ylkgdsfa7x 324/05/2023, 19:46
230524-ygzqhsef63 7Analysis
-
max time kernel
27s -
max time network
64s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
24/05/2023, 19:46
Static task
static1
Behavioral task
behavioral1
Sample
bot3.dll
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
bot3.dll
Resource
win10v2004-20230220-en
General
-
Target
bot3.dll
-
Size
3.3MB
-
MD5
e362ae83e78eeb6ab2e6fa885c4bf114
-
SHA1
c30b0261b6e741d960cd3fb552077efac9ee29b5
-
SHA256
ecac2400261d2962ba84f149b9104fb6a6955ccb35d4044a464de26c545b2bd5
-
SHA512
4d27f8cd937f2d919f311c3b039a66a95cead5bb5a2a19424ad3df5c9cd25193434ead5d4c54a4ea83168937401adaa8ad876e21567766bf6abd82c3a3e4be6c
-
SSDEEP
49152:vfqRHVwASOpGtlqpDIU6iu4NkZTg+cSwDjys6VUbf01OEe04oE4UWz53B8YVTVq4:n6M+qGD8HzNPDVEkXpiJ
Malware Config
Signatures
-
Looks up external IP address via web service 1 IoCs
Uses a legitimate IP lookup service to find the infected system's external IP.
flow ioc 1 checkip.amazonaws.com