Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2196-3-0x0...ry.exe

windows7-x64

3

2196-3-0x0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2196-3-0x0000000000400000-0x00000000007D5000-memory.dmp

  • Size

    3.8MB

  • Sample

    231031-lpwbvafc5w

  • MD5

    dda8565ddf86e06bc91cf552d2d47b40

  • SHA1

    e26d3ad4f0f631c18ebe4f73d631e46550ad364d

  • SHA256

    3d784aac55c82b208a48319ad72511dc2750234b7ca6f669acb2eba707e3abe8

  • SHA512

    83b63f4bf4e8b78640d46265732e15993df0c1f53a57bd7368ee5cd52072a796993320f791a1ac187e292741ef9a10a16b7917950795db8fb511eb950945c03d

  • SSDEEP

    6144:YZ4ZJ7oMzXpdF2AX2RvzI4TJu1lnTZc4GR1fOh2P2cbn:Ya8wpCRv9MnTZc4GR1fLBb

Score
10/10
vidardbc6cdbef612cd0a4cea9b2f05f89628

Malware Config

Extracted

Family

vidar

Version

6.3

Botnet

dbc6cdbef612cd0a4cea9b2f05f89628

C2

https://steamcommunity.com/profiles/76561199566884947

https://t.me/octobrains
Attributes
  • profile_id_v2

    dbc6cdbef612cd0a4cea9b2f05f89628

  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 10.16; rv:110.0) Gecko/20100101 Firefox/119.0

Targets

    • Target

      2196-3-0x0000000000400000-0x00000000007D5000-memory.dmp

    • Size

      3.8MB

    • MD5

      dda8565ddf86e06bc91cf552d2d47b40

    • SHA1

      e26d3ad4f0f631c18ebe4f73d631e46550ad364d

    • SHA256

      3d784aac55c82b208a48319ad72511dc2750234b7ca6f669acb2eba707e3abe8

    • SHA512

      83b63f4bf4e8b78640d46265732e15993df0c1f53a57bd7368ee5cd52072a796993320f791a1ac187e292741ef9a10a16b7917950795db8fb511eb950945c03d

    • SSDEEP

      6144:YZ4ZJ7oMzXpdF2AX2RvzI4TJu1lnTZc4GR1fOh2P2cbn:Ya8wpCRv9MnTZc4GR1fLBb

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks