Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
tuc5.exe
-
Size
4.6MB
-
Sample
240108-y292zshdfn
-
MD5
bbd6c397ebe993fcc61895265adae480
-
SHA1
b087e55a6d6a15e4fbd09d4641e389c80e3be62f
-
SHA256
3c21c1067f2f7fd008b20dda0422e4b50f679aadf5e91817889f58d759282f1d
-
SHA512
637ab0dd6966a132163a96ed5189703f450f73cc14758d31143bce765d7d95c3809f66d5c27fede311417914a8b7ff4df63fd7a947dfd97e3eca2e10720ebf2e
-
SSDEEP
98304:joMwMk2nFZC/PkQ/dq5FrCGhhya/eAasl3WqfVkrqoBHQnYZS/4dm8:6t2FZLQ/iVoAH3zkmoCMC4dD
Static task
static1
Behavioral task
behavioral1
Sample
tuc5.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
tuc5.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
tuc5.exe
-
Size
4.6MB
-
MD5
bbd6c397ebe993fcc61895265adae480
-
SHA1
b087e55a6d6a15e4fbd09d4641e389c80e3be62f
-
SHA256
3c21c1067f2f7fd008b20dda0422e4b50f679aadf5e91817889f58d759282f1d
-
SHA512
637ab0dd6966a132163a96ed5189703f450f73cc14758d31143bce765d7d95c3809f66d5c27fede311417914a8b7ff4df63fd7a947dfd97e3eca2e10720ebf2e
-
SSDEEP
98304:joMwMk2nFZC/PkQ/dq5FrCGhhya/eAasl3WqfVkrqoBHQnYZS/4dm8:6t2FZLQ/iVoAH3zkmoCMC4dD
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-