Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

bot3.dll

windows7-x64

6

bot3.dll

windows10-2004-x64

8

Resubmissions

24/05/2023, 19:53

230524-ymb7eafa8s 8

24/05/2023, 19:52

230524-ylkgdsfa7x 3

24/05/2023, 19:46

230524-ygzqhsef63 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bot3.dll

  • Size

    3.3MB

  • Sample

    230524-ymb7eafa8s

  • MD5

    e362ae83e78eeb6ab2e6fa885c4bf114

  • SHA1

    c30b0261b6e741d960cd3fb552077efac9ee29b5

  • SHA256

    ecac2400261d2962ba84f149b9104fb6a6955ccb35d4044a464de26c545b2bd5

  • SHA512

    4d27f8cd937f2d919f311c3b039a66a95cead5bb5a2a19424ad3df5c9cd25193434ead5d4c54a4ea83168937401adaa8ad876e21567766bf6abd82c3a3e4be6c

  • SSDEEP

    49152:vfqRHVwASOpGtlqpDIU6iu4NkZTg+cSwDjys6VUbf01OEe04oE4UWz53B8YVTVq4:n6M+qGD8HzNPDVEkXpiJ

Score
8/10

Malware Config

Targets

    • Target

      bot3.dll

    • Size

      3.3MB

    • MD5

      e362ae83e78eeb6ab2e6fa885c4bf114

    • SHA1

      c30b0261b6e741d960cd3fb552077efac9ee29b5

    • SHA256

      ecac2400261d2962ba84f149b9104fb6a6955ccb35d4044a464de26c545b2bd5

    • SHA512

      4d27f8cd937f2d919f311c3b039a66a95cead5bb5a2a19424ad3df5c9cd25193434ead5d4c54a4ea83168937401adaa8ad876e21567766bf6abd82c3a3e4be6c

    • SSDEEP

      49152:vfqRHVwASOpGtlqpDIU6iu4NkZTg+cSwDjys6VUbf01OEe04oE4UWz53B8YVTVq4:n6M+qGD8HzNPDVEkXpiJ

    Score
    8/10

    • Blocklisted process makes network request

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks