Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
bot3.dll
-
Size
3.3MB
-
Sample
230524-ymb7eafa8s
-
MD5
e362ae83e78eeb6ab2e6fa885c4bf114
-
SHA1
c30b0261b6e741d960cd3fb552077efac9ee29b5
-
SHA256
ecac2400261d2962ba84f149b9104fb6a6955ccb35d4044a464de26c545b2bd5
-
SHA512
4d27f8cd937f2d919f311c3b039a66a95cead5bb5a2a19424ad3df5c9cd25193434ead5d4c54a4ea83168937401adaa8ad876e21567766bf6abd82c3a3e4be6c
-
SSDEEP
49152:vfqRHVwASOpGtlqpDIU6iu4NkZTg+cSwDjys6VUbf01OEe04oE4UWz53B8YVTVq4:n6M+qGD8HzNPDVEkXpiJ
Static task
static1
Behavioral task
behavioral1
Sample
bot3.dll
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
bot3.dll
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
bot3.dll
-
Size
3.3MB
-
MD5
e362ae83e78eeb6ab2e6fa885c4bf114
-
SHA1
c30b0261b6e741d960cd3fb552077efac9ee29b5
-
SHA256
ecac2400261d2962ba84f149b9104fb6a6955ccb35d4044a464de26c545b2bd5
-
SHA512
4d27f8cd937f2d919f311c3b039a66a95cead5bb5a2a19424ad3df5c9cd25193434ead5d4c54a4ea83168937401adaa8ad876e21567766bf6abd82c3a3e4be6c
-
SSDEEP
49152:vfqRHVwASOpGtlqpDIU6iu4NkZTg+cSwDjys6VUbf01OEe04oE4UWz53B8YVTVq4:n6M+qGD8HzNPDVEkXpiJ
Score8/10-
Blocklisted process makes network request
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-