Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2528-21-0x...ry.exe

windows7-x64

1

2528-21-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2528-21-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    230919-tt7vface29

  • MD5

    82aca4b4b9ff5224c31b597f447d1fe3

  • SHA1

    019b5d6ef083812ebf8ff510f497b8229edd58ee

  • SHA256

    e8158ea595ee89489f07ac6fae4f6c4da1d3952284cfe52930c79424484c729d

  • SHA512

    078fb017da22ca3fde04e1b0ee4c69f6a42ebaf7626e818090692526740aef81f106e38a61aa53a2873f463ae238ab1b5ef7e4af6ea3c3589264da2a1e5ec646

  • SSDEEP

    3072:WupykFUcvw98zcz7jZRB2nttanU5qnC/6FtIdx6cUgGZzE5OT:nK7ny3aU5qngd8dgGZzE5OT

Score
10/10
formbookm0d5rat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

m0d5

Decoy

thedaintydesign.com

floramiracle.com

k-runimport.com

aquafoodsupply.com

smultipleslogistics.com

althard.com

nicklawsoncreative.com

mting.link

salvadorsdream.com

vijmas.xyz

thornspeakers.com

dsales-academy.com

yesquw.xyz

shosjhdj.sbs

erasmusplusprojects.com

infinity506.com

lojaalphaelite.com

pixelmagicpath.top

primeshiftemporium.site

hssk1k4y.top

Targets

    • Target

      2528-21-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      82aca4b4b9ff5224c31b597f447d1fe3

    • SHA1

      019b5d6ef083812ebf8ff510f497b8229edd58ee

    • SHA256

      e8158ea595ee89489f07ac6fae4f6c4da1d3952284cfe52930c79424484c729d

    • SHA512

      078fb017da22ca3fde04e1b0ee4c69f6a42ebaf7626e818090692526740aef81f106e38a61aa53a2873f463ae238ab1b5ef7e4af6ea3c3589264da2a1e5ec646

    • SSDEEP

      3072:WupykFUcvw98zcz7jZRB2nttanU5qnC/6FtIdx6cUgGZzE5OT:nK7ny3aU5qngd8dgGZzE5OT

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks