Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
55f1c0c0711d595a5946c93feffbd4ea9da5175273ea649d1b32694d21f721e2.zip.zip
-
Size
54.6MB
-
Sample
231107-rh9tjsab69
-
MD5
55ac0ad56b77829db5b747816db03a0a
-
SHA1
f1eb06a45e29f603bedcbccfafd731766181b02a
-
SHA256
58f19c9d25cd0a8d0a8bab054b67cdd3e592e22736235969943c3a90cb23bd9e
-
SHA512
d6f6db516844f46132c92b6b0188b891981aa97c56a418f9a4a38b6ff12e03eed8b19419b5b0e29c499f399d12b13b850b328402011bacb4e6fd0046621bca5d
-
SSDEEP
1572864:Y4LaMYOGRv81fdqmApa1sAu7yp95/Ihe2ICDPAh:naMY5GfkmApa+AR/Ihe2rAh
Malware Config
Targets
-
-
Target
ConfigKelmis.exe
-
Size
311KB
-
MD5
312e7fd16860a117b87939802296fa16
-
SHA1
68571b2ab41e8e742cb6db6ee64fffa354d5f07a
-
SHA256
29bf254ca49d0a1d5291c2f83650de0163183481e6bab1968eef2f98a360560b
-
SHA512
a4dc7a525d78bc851e9d97342604b6d66848dcb51ae796bd10431ed9a75fef78ceaec5f60099b8a3e5089021c0913f58304eabb47bfb47b6135d3ea8a6d5a999
-
SSDEEP
6144:s5xvGBxmGX36RT1nQgCyZNBrKmdkF/JUdbfZWgT0PR8IxrnBCUXtXp:iwxmG0dLfIT54Q8ItR
Score1/10 -
-
-
Target
Kelmis.exe
-
Size
638KB
-
MD5
d2d745b3210a17d3d50518e2c957a92d
-
SHA1
07b66db19739e0673337db1b2c9edd2d78183e5e
-
SHA256
133cc7cb530ff443b9299c2ece88b29ccdb79e8c00e66c063a344692eb00299a
-
SHA512
00bd5b86ce5503557f768c5f900820f35e7cf780be46503c2e6a3a82b522781fe435d62842484e9905b9c3dac381725701e7f4bd218481a60b666f3b4dc8209b
-
SSDEEP
1536:yC79gXAX271lcBzqEY2lkCswVxYDXosWkd09dlTaUGX5unVvX+9BRghXa9GGGGGl:XgXpJozm2lkCsuYDbMtZfVW9nWa29
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Accessibility.dll
-
Size
12KB
-
MD5
63c434b864ff270ce9fef43917dc8621
-
SHA1
bd0a92569b2a14f52bea0dc52fae7238332c3b8c
-
SHA256
c36813bdf03fbad922e6558756c3cc2956e6f74457003947fa4e91952445e19f
-
SHA512
0770253b619a3f5b8154aaceb924e7c97fabcbc33a84db636662c3f8d24ac0967ba479745df6cc0e0b8e38483d2c93164540eb55ae3add512675360e88b125d3
-
SSDEEP
192:b1n3RPr/jgUiix4ix4eJFBRbl9KYYoK3ESmMadMpCNSeFU:h3p/jgOvRbli3ESmMadM4NhU
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Assembly-CSharp.dll
-
Size
1011KB
-
MD5
b09c7f44566d14d1ac3c8572948b80b2
-
SHA1
50632d6d83fdb55380078e8f31d938ff97730139
-
SHA256
bafbb37d359835739fc90fb286940aa513a1ba546627d0cf905d412659aad745
-
SHA512
2ab349136e806c89c9674a9ee20f400890f55a803d4443e9354c00e4d48764d5fde5a54558035ec92f607e21082c4c619b3d8e1bb4c6961034f175d60bdd389f
-
SSDEEP
12288:ysj0iNT/RT2toz2xcAd9+wjjeyEwWr+BpD4a2kPfcmBbLWMkXqP:yswippTCjc+7xPUmhKMS
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Coffee.SoftMaskForUGUI.dll
-
Size
16KB
-
MD5
c20390b23b4bbe83e28e81115ada86f1
-
SHA1
3c62e1cd24edfea157aec48b477256f283a2587c
-
SHA256
0a52ec616424b986b9a7ea342577519d3ddd0d626f4bc6260f746ba79449c76b
-
SHA512
3e2716aabf702d1267101d3642874e1e9a55f696ff3daae32fe0844ebca77134a9b2dc18d813287426199660214fad0dc9b5f6fbdb804c7df8852ca7597c65bb
-
SSDEEP
192:+hB8SaQwuUrMaGBjkpj1LZaTN73IP5ecB0pnM2fWn4nEHfUCKWwCGTXrjJLy1+AF:mBzwuUwaM2KJTcuRhHXrjJU+e
Score1/10 -
-
-
Target
Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll
-
Size
194KB
-
MD5
cc547565785085d77197950305ff88d6
-
SHA1
e2d92d4139ff587c9ae02ef00e0579da0a9c896a
-
SHA256
2c32b22249ca820844cb40305e6353e8ca2f52737e5f5ee13f6bb8b36ade7263
-
SHA512
c096df120453193d633e800cfbd86049327308f98ff05a042232048f2f9ff7f6143b7d7166214d030c030ae01652e673a6ecba0a1623814739dd9181e7aebfea
-
SSDEEP
3072:pO7jZcX98fL59/6Gt2W0hiO/pNgfilq8Cym0RjISIu2IQRI61E4hcF60DwKkBhfn:pD9WL6GtP8/pNx48CCISIpER
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Mono.Data.Sqlite.dll
-
Size
163KB
-
MD5
c3f45469e392a105cffe6ce007a54a61
-
SHA1
bf0edef3a0cb5fc35920497a108600d5625b869a
-
SHA256
5cfd7d5e444ec8d53755d4d82220524aa455f34b87a6f740b984d50465d76d4b
-
SHA512
d2fff88539fe6999ea428416cc153500f9ba5c2d130888853bec3568b1599b60d84da40fc3b7f08d4bde439c2d2500c720084064f92277a2ef16840a7cb83ff9
-
SSDEEP
3072:9b4Gh78nIXk4uuIgZUHfdNQFNFGFOFwcGF6cmFWc0FWc8cIcKcUFJFpcNcHc7cbz:9b5qI04uuIg+H7QFNFGFOFwcGF6cmFWt
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Mono.Posix.dll
-
Size
207KB
-
MD5
72c9ea78101c493635c0f763d1795d7a
-
SHA1
c04e331b6415bf566e1aa26550bf794651704c7c
-
SHA256
a33abceffeaa6b6d5dbd2cf77210daddfe331ed40eeae4cea3c5efb0c0db2cc0
-
SHA512
4dcc9495000f0cb0d93381a466f8d0553c2f9ef9521ac71979371b5eded37a25224a861ccc101a24b0b2741d30efb71d81d03fa00ca476bf8339c1786d9c46f2
-
SSDEEP
6144:9c9wE0Q11JQ1S+OWMYU7nUXxOwblnsAPe+Eg:9c9wE0Q11JQE+kY1SA1
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Mono.Security.dll
-
Size
302KB
-
MD5
d1b792d07b0e08ef190eb6ef5361e6f3
-
SHA1
36890188d80598132d63561ded707e641282f2a1
-
SHA256
2b7651b398dc63af0dbc0038758981c29238a495681a7ed487357a464ad4de15
-
SHA512
1229d49068401a078b81ee398524327ccdebcd2fb6134c980d643b76f075244f2670d0773aa35027aa8b8d40ad6c29f16a223b142f3a6595c3641c32c8c31215
-
SSDEEP
6144:+JvWNTGENjTzSQfGFzPTzcyaksosrNn95tq:fmFz9mN
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Mono.WebBrowser.dll
-
Size
163KB
-
MD5
ac6215e0a18a783958a39f6fd8e74057
-
SHA1
ac7cbaec3869728b236634691c356512af308054
-
SHA256
7d2eb49a5120d9b1f3eb3c6501d4eed6cacf81f921fbf5c248aab5f0d093f2ee
-
SHA512
36eee8f732e6e5c4664dcf77f5d1dc03ded650720624de532cbbd4fe2214accbb2a08365ae2cfc8640e30f8ae1aa81532f867ad303c2798fc5288f6393a78e88
-
SSDEEP
3072:ot5akP49r7Mt5as0yAg2TMqEHbbqRJz7FW0g:IP40fAMW3
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Newtonsoft.Json.dll
-
Size
667KB
-
MD5
d46892cc58663531b78625cf74acb439
-
SHA1
d4245bd8ea576c4250950b337d5d1047c12c703a
-
SHA256
759accaa5fb7bddb54a2ceab92a3d8ab50750333ec73b62605aea6165d1ca6dd
-
SHA512
fa204ab353a5f9a1885a5fedd5df48db6e37894ed93e994f92fdd273d06e58523c39d9fdfc31a55fbd02a9b023fd9a0105fc871b9ae518430e71b0a9af13f284
-
SSDEEP
12288:+m76XVrdlC5KK/BGoG1wQvOFTQ2VS8N9XBBjsgV:+m7w/AAoG81gMXBBjsgV
Score1/10 -
-
-
Target
Kelmis_Data/Managed/Novell.Directory.Ldap.dll
-
Size
241KB
-
MD5
83bdaee702eb61a6515a40b40903de7b
-
SHA1
0ee79fd4b02cc52729462f18f9d2c321a7e7bd65
-
SHA256
c1f304fdfd658594fc353dc6cfb5593cef32c0623fbfb6f26acc5e0d40877552
-
SHA512
6a965b9e01d2012c6b7304a7cba226a42a62a5cd7fd8b6d7b07d8fdb16dfacf0172989fed050eb0206d6cbb6b8c9136442ae4f847c99b49fbd0f6339c764282d
-
SSDEEP
3072:l6OgMuqCdVTxVHHK4ZXSCI8W5pzZGJt1qF0qpk7tI9/93H9w/JXWp6b226vyyv+f:l6tnd5nIpzZG1qF0qNGJGX2IRvkbT
Score1/10 -
-
-
Target
Kelmis_Data/Managed/System.ComponentModel.Composition.dll
-
Size
250KB
-
MD5
a286ba1c012b3f0e0015f2206d7c4345
-
SHA1
9cfbf75ad321a8670ebf9ae4415c9e24436ffb05
-
SHA256
9bdc792fab55d5820bc9157258c322e447b103e4078dbcb3849ffe0a17e54f17
-
SHA512
2d6ba24e8e85acd949fc50067bec3397cc7964d419ac4ccfa410a9fdcdfd4afe878e8baef6d5a64288f8d232186d6d51a70653a2074f238ab5ddb05b8e8c93f4
-
SSDEEP
3072:1yNoMHX71VOFhbrHtfPe7Ex/EGgDX/sogRGTQRVlHHQVpjtCMa2+KF:eZ3JybrFWZgRsIy3tCMaa
Score1/10 -
-
-
Target
Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll
-
Size
82KB
-
MD5
b34188fa0a45b438f5cef1362e85147c
-
SHA1
1a4fa7ec667969e2d6177e42952b03536b6bb0c1
-
SHA256
4b2b8f7b2eebff970ef247ec94d271d6664514dee62a0a97f03b03dbe589f357
-
SHA512
12c40a7e1c61f33e8c8610c35a5a8c74e739ecd8458f0e6403508d5dea69956904d299718889036daf71fecf5d01236b0dc04dbc0206acd49b4c1e6dcc1e9e84
-
SSDEEP
1536:CoZEzJ7HR3HMNI1nL5WZpNT6n3Ur/UlcjUK6NBTgV:CTxXbLkZpNT6n3UglcjUK6NBTgV
Score1/10 -
-
-
Target
Kelmis_Data/Managed/System.Configuration.dll
-
Size
122KB
-
MD5
d0a550f30b09ac8e5f49ad6d7daab4c4
-
SHA1
d502b45d880866d8608a5795033390ffde6df6a1
-
SHA256
cd5793957604e1448443da0d703f29a31100d4a7030c140121c7ddf6b2027d94
-
SHA512
e24f1d15a5017ac034a52bb8e3466912199b45d75f0d3e4b03d3ed604bdf67f1109a75660ed22c1219973c5c6b3f33692777112fbdf14b5597ef967ecea395da
-
SSDEEP
3072:JH3xt3GrHyTALVXzA4k8y3Kpn5WJzL0MIeZH4+:JH3DcSTSVDMJM
Score1/10 -
-
-
Target
Kelmis_Data/Managed/System.Core.dll
-
Size
1021KB
-
MD5
ee54cdd0260259a087442949da49f50a
-
SHA1
49aafc2caeb908ccc8f8598414a317cc2cebf9c2
-
SHA256
d982f54622edc2ed4637fe547b70907f589a2ae4de4b6d604c54ee35f97dca03
-
SHA512
09af08ef2c72dea7ccf440e168a684e35bca1eba96d6276e8a3855be270ee8c91b92869b415622679f6dea95c29b096001b756d1ca7c58dff98a3b666a9e56d4
-
SSDEEP
12288:GDQR1+Dy+BcB5Qud7DfVsL9KVI36owJKbYvB54wkHXdt:bn+BE5jVsEWIWYvB5
Score1/10 -