Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

b46ca6b63b...ds.exe

windows7-x64

10

b46ca6b63b...ds.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f_payloads.exe

  • Size

    40KB

  • Sample

    240106-c9vrdaged7

  • MD5

    35840386396e44516a791c55a0d007ef

  • SHA1

    bc8b0b7bad39e8af351994b405662271679a6a0f

  • SHA256

    d6e58255fab8064f94b2ab44eebb1f1dcebae14efdb0fb28b6944e6f56e65571

  • SHA512

    a8cd301f257ac631a6c77cf89c55eaa9b89f083e50a5ecc02cc76dcad1024fa8bf4212afc96a6a700ab76cfc2f35663e5a429fc9712074ae98b0893c6d96b40b

  • SSDEEP

    768:4raag0YrBHXZUrRhSZOh/q+wjDp8v3uWqeqLhy5:4raDD1HJ+94jDS/XqeqVy5

Score
10/10
smokeloaderpub1backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f_payloads.exe

    • Size

      40KB

    • MD5

      35840386396e44516a791c55a0d007ef

    • SHA1

      bc8b0b7bad39e8af351994b405662271679a6a0f

    • SHA256

      d6e58255fab8064f94b2ab44eebb1f1dcebae14efdb0fb28b6944e6f56e65571

    • SHA512

      a8cd301f257ac631a6c77cf89c55eaa9b89f083e50a5ecc02cc76dcad1024fa8bf4212afc96a6a700ab76cfc2f35663e5a429fc9712074ae98b0893c6d96b40b

    • SSDEEP

      768:4raag0YrBHXZUrRhSZOh/q+wjDp8v3uWqeqLhy5:4raDD1HJ+94jDS/XqeqVy5

    Score
    10/10
    smokeloaderpub1backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks