Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    936-1-0x0000000075160000-0x000000007526D000-memory.dmp

  • Size

    1.1MB

  • Sample

    240209-ck71eaec8y

  • MD5

    9843f8ce4fc9ea3d8b156bb14eee7c8c

  • SHA1

    40cee20f491427d60325ef01df2a1b3de18e8fa6

  • SHA256

    2709825756b2c77422ba1194254c829aafe5f2a5fedc4647e9d5ff37466dc341

  • SHA512

    255e69ba1eaac34474f19296d4de7fa560dbf9c9de3755add7cdbc910432545f7c2bbc69612513a828396152ddd50b6f58424cba7b8d73fb9aaa65da42021a37

  • SSDEEP

    12288:RPuU8oHEBgNPGf3PdX0EUYkpehmNytbR8ozF0nxaZQ:RPp84EBgp+aehv2UWxaZ

Score
10/10

Malware Config

Extracted

Family

gozi

Extracted

Family

gozi

Botnet

3500

C2

init.icecreambob.com

app.updatebrouser.com

fun.lakeofgold.com

Attributes
  • build

    250211

  • exe_type

    loader

  • server_id

    580

rsa_pubkey.plain
aes.plain

Targets

    • Target

      936-1-0x0000000075160000-0x000000007526D000-memory.dmp

    • Size

      1.1MB

    • MD5

      9843f8ce4fc9ea3d8b156bb14eee7c8c

    • SHA1

      40cee20f491427d60325ef01df2a1b3de18e8fa6

    • SHA256

      2709825756b2c77422ba1194254c829aafe5f2a5fedc4647e9d5ff37466dc341

    • SHA512

      255e69ba1eaac34474f19296d4de7fa560dbf9c9de3755add7cdbc910432545f7c2bbc69612513a828396152ddd50b6f58424cba7b8d73fb9aaa65da42021a37

    • SSDEEP

      12288:RPuU8oHEBgNPGf3PdX0EUYkpehmNytbR8ozF0nxaZQ:RPp84EBgp+aehv2UWxaZ

    Score
    3/10

MITRE ATT&CK Matrix

Tasks