Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

dridex

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2987e2840004283f769082a76c27b8bd095f4772a005db21defad0da4727092c

  • Size

    1.4MB

  • Sample

    230801-ftqn9sef4t

  • MD5

    c9d6b79fe7d9a09e4ab988fca164bd35

  • SHA1

    bc1aff6467600d3e0a7445b67a0216c7acb4fc47

  • SHA256

    2987e2840004283f769082a76c27b8bd095f4772a005db21defad0da4727092c

  • SHA512

    c098c2a3bfccc8794e13423616fb11d2c5d8ef918e9b90dd34f4a16f9c92a93f2f4983a49e02a6ce34714bfe79699fbbccd7aadce260ea2b4cac6075a9743608

  • SSDEEP

    24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      2987e2840004283f769082a76c27b8bd095f4772a005db21defad0da4727092c

    • Size

      1.4MB

    • MD5

      c9d6b79fe7d9a09e4ab988fca164bd35

    • SHA1

      bc1aff6467600d3e0a7445b67a0216c7acb4fc47

    • SHA256

      2987e2840004283f769082a76c27b8bd095f4772a005db21defad0da4727092c

    • SHA512

      c098c2a3bfccc8794e13423616fb11d2c5d8ef918e9b90dd34f4a16f9c92a93f2f4983a49e02a6ce34714bfe79699fbbccd7aadce260ea2b4cac6075a9743608

    • SSDEEP

      24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk

    Score
    8/10
    evasionupx

    • Modifies Windows Firewall

      evasion

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks