Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    svchost.rar

  • Size

    51KB

  • Sample

    240121-qpk84adge3

  • MD5

    6a6c60e79f45e3c1d8c0c51b94b648c5

  • SHA1

    13f36a31ae15e4424c63c2cfb0520e15047a261a

  • SHA256

    d2b861b4c60c96aaebb589ab6777cb1602f0e3993b9709d6e28c064665cdd6d7

  • SHA512

    0a43db8304ee5a1ef1f2619fd9c69e2f56e2cd7f0334022e1051fc6224b870835bd10134a3ef7b0acdf1d76f5c2e25b5a6404104e067635ae2d89ada2bb91a84

  • SSDEEP

    1536:QCj9xh9HTSnqVDz2nv7ATERFGPm2hgFcrwO8gLP2sm3:Nzh9HunOOnv7dROodZr3

Score
10/10

Malware Config

Extracted

Family

njrat

Version

im523

Botnet

HacKed

C2

198.27.120.241:4067

Mutex

11b417c1ffd08ae28e54defe8aed89fd

Attributes
  • reg_key

    11b417c1ffd08ae28e54defe8aed89fd

  • splitter

    |'|'|

Targets

    • Target

      svchost.exe

    • Size

      71KB

    • MD5

      c5af3619e9edede1a5f1bed4bd7e77fc

    • SHA1

      7191ab9a879204dec96c55bbc2855ca39d75c584

    • SHA256

      c76415a8bae643ffc09a5966b9527e69bd7bba11e052464e8a673a6018735bb9

    • SHA512

      c58993d3b0c18eaea54916b3cb856684b47f57100f7964066090102b67301d3278e9117889d626436426deddb5dfde33d36d93fa327637686eeafd7f0384e996

    • SSDEEP

      1536:LSTZJcOuE2kv+gRJNvgzpUc20Mtprvp8gu/UUN:LEiO15+yJJgzpU6WZe

    Score
    1/10

MITRE ATT&CK Matrix

Tasks