Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    SecuriteInfo.com.Trojan.Win32.Injector.853.9464

  • Size

    523KB

  • Sample

    230823-rvrhqscf73

  • MD5

    9c887b53af0404e4559cb8ce1edb2a1a

  • SHA1

    75038b9aadafa00f8a5619e8c50acc52fa835d51

  • SHA256

    b8e50901b6e2d51d8d0d639faf9b642f49568506aff8d448feb4032986bde964

  • SHA512

    f69252aa0ae55cc9d9b09f5a7018c23913adad744139e212c64eaf990cf0eed18d4776ab239585d870fe3e6bf2531048ad6393978beba65f164ebbf0bc4a1223

  • SSDEEP

    12288:fFaiwnV94rbm0quSd05PHe9h8SzdEg5Xjui61ngd/yBI3QhoG9N:tR/fPSd05PHKXpEgBjui6pgd6Be+o6N

Score
10/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Trojan.Win32.Injector.853.9464

    • Size

      523KB

    • MD5

      9c887b53af0404e4559cb8ce1edb2a1a

    • SHA1

      75038b9aadafa00f8a5619e8c50acc52fa835d51

    • SHA256

      b8e50901b6e2d51d8d0d639faf9b642f49568506aff8d448feb4032986bde964

    • SHA512

      f69252aa0ae55cc9d9b09f5a7018c23913adad744139e212c64eaf990cf0eed18d4776ab239585d870fe3e6bf2531048ad6393978beba65f164ebbf0bc4a1223

    • SSDEEP

      12288:fFaiwnV94rbm0quSd05PHe9h8SzdEg5Xjui61ngd/yBI3QhoG9N:tR/fPSd05PHKXpEgBjui6pgd6Be+o6N

    Score
    10/10
    • DcRat

      DarkCrystal(DC) is a new .NET RAT active since June 2019 capable of loading additional plugins.

    • DCRat payload

      Detects payload of DCRat, commonly dropped by NSIS installers.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks