Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
SecuriteInfo.com.Trojan.Win32.Injector.853.9464
-
Size
523KB
-
Sample
230823-rvrhqscf73
-
MD5
9c887b53af0404e4559cb8ce1edb2a1a
-
SHA1
75038b9aadafa00f8a5619e8c50acc52fa835d51
-
SHA256
b8e50901b6e2d51d8d0d639faf9b642f49568506aff8d448feb4032986bde964
-
SHA512
f69252aa0ae55cc9d9b09f5a7018c23913adad744139e212c64eaf990cf0eed18d4776ab239585d870fe3e6bf2531048ad6393978beba65f164ebbf0bc4a1223
-
SSDEEP
12288:fFaiwnV94rbm0quSd05PHe9h8SzdEg5Xjui61ngd/yBI3QhoG9N:tR/fPSd05PHKXpEgBjui6pgd6Be+o6N
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.Win32.Injector.853.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Trojan.Win32.Injector.853.exe
Resource
win10v2004-20230703-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.Win32.Injector.853.9464
-
Size
523KB
-
MD5
9c887b53af0404e4559cb8ce1edb2a1a
-
SHA1
75038b9aadafa00f8a5619e8c50acc52fa835d51
-
SHA256
b8e50901b6e2d51d8d0d639faf9b642f49568506aff8d448feb4032986bde964
-
SHA512
f69252aa0ae55cc9d9b09f5a7018c23913adad744139e212c64eaf990cf0eed18d4776ab239585d870fe3e6bf2531048ad6393978beba65f164ebbf0bc4a1223
-
SSDEEP
12288:fFaiwnV94rbm0quSd05PHe9h8SzdEg5Xjui61ngd/yBI3QhoG9N:tR/fPSd05PHKXpEgBjui6pgd6Be+o6N
Score10/10-
DcRat
DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.
-
Suspicious use of SetThreadContext
-