Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time network
147s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
05/01/2024, 05:52
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-01_e39b59d7fca7aa957609f520fe5856d8_karagany_mafia.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral2
Sample
2024-01-01_e39b59d7fca7aa957609f520fe5856d8_karagany_mafia.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
2024-01-01_e39b59d7fca7aa957609f520fe5856d8_karagany_mafia.exe
-
Size
257KB
-
MD5
e39b59d7fca7aa957609f520fe5856d8
-
SHA1
00eeb705d29799a6afe6b92022577ba7ad5a9bd8
-
SHA256
47f68b7e1504e40624a6276fce14f5bb7b524ea3282da3a877e826d2da895577
-
SHA512
9465fdcdb4a68184e1e933d9d1cbe2d9b5eaa87fbefde3dea40bb6af878d55a1cfa0b1412a102d3056508a1b523bc2e9fab47ee9cfa7c10e4f7981de9162013d
-
SSDEEP
6144:eJvXbVklS/zDiWsg4Ig1ubxq6ckd+QWm5iGgw3Y9:2VklS/qHg4EbVckYBJGT3Y9
Malware Config
Signatures
-
Unexpected DNS network traffic destination 64 IoCs
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
description ioc Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 104.155.138.21 Destination IP 104.155.138.21 Destination IP 107.178.223.183 Destination IP 107.178.223.183