Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4ef41c8a6ad1793dd6c12785f8d00c49

  • Size

    188KB

  • Sample

    240109-xmje2shgd9

  • MD5

    4ef41c8a6ad1793dd6c12785f8d00c49

  • SHA1

    b11246afc9853657028260993960e591c3e78e72

  • SHA256

    fd203d1a3be0e29d9963c856912d38ed4ab11bee899ca9748229079546df278c

  • SHA512

    12687b5e539b117d14ca217d335458a666fa015382ac3de46ec665c3c710da5c7755e546105202332e2a7a656117f769864ed95f8c6b81025ad9f9ebf31868ce

  • SSDEEP

    3072:FA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAovo:FzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      4ef41c8a6ad1793dd6c12785f8d00c49

    • Size

      188KB

    • MD5

      4ef41c8a6ad1793dd6c12785f8d00c49

    • SHA1

      b11246afc9853657028260993960e591c3e78e72

    • SHA256

      fd203d1a3be0e29d9963c856912d38ed4ab11bee899ca9748229079546df278c

    • SHA512

      12687b5e539b117d14ca217d335458a666fa015382ac3de46ec665c3c710da5c7755e546105202332e2a7a656117f769864ed95f8c6b81025ad9f9ebf31868ce

    • SSDEEP

      3072:FA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAovo:FzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks