Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc_master_nuker.exe

  • Size

    21.6MB

  • Sample

    231207-sy83macg66

  • MD5

    3500f7067127d28b8d05cf5c66191b8a

  • SHA1

    655dd218750a1089b2dc00b51b0822ef6a4d3811

  • SHA256

    2dc0b067481a85c2911bcb5f1771ecbf76e50d0775e684f33996ca70f4cc6c49

  • SHA512

    fa9fbb770e5aa85c4e787ad26f113f2435470fcaad0b37531db5a56896cd8b9879bac528eb6d98094229ae2a5334da9a8dc26b7379478a94e928ea4fb1f972db

  • SSDEEP

    393216:9qPnLFXlrFOIxBZgQFDOETgsdNfGUuKg/oUvO42FTQUam:EPLFXNFLyQUEHgsgk

Malware Config

Targets

    • Target

      dc_master_nuker.exe

    • Size

      21.6MB

    • MD5

      3500f7067127d28b8d05cf5c66191b8a

    • SHA1

      655dd218750a1089b2dc00b51b0822ef6a4d3811

    • SHA256

      2dc0b067481a85c2911bcb5f1771ecbf76e50d0775e684f33996ca70f4cc6c49

    • SHA512

      fa9fbb770e5aa85c4e787ad26f113f2435470fcaad0b37531db5a56896cd8b9879bac528eb6d98094229ae2a5334da9a8dc26b7379478a94e928ea4fb1f972db

    • SSDEEP

      393216:9qPnLFXlrFOIxBZgQFDOETgsdNfGUuKg/oUvO42FTQUam:EPLFXNFLyQUEHgsgk

    Score
    7/10
    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks