Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

98949a479e...1d.exe

windows7-x64

7

98949a479e...1d.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/pwgen.dll

windows7-x64

3

$PLUGINSDIR/pwgen.dll

windows10-2004-x64

3

DomaIQ.exe

windows7-x64

1

DomaIQ.exe

windows10-2004-x64

1

DomaIQ10.exe

windows7-x64

1

DomaIQ10.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    98949a479e481213c2b747263ad7501d

  • Size

    489KB

  • Sample

    240213-f23zkagd34

  • MD5

    98949a479e481213c2b747263ad7501d

  • SHA1

    21013b2c7d0efd7c4f065855ef7e646257a775a7

  • SHA256

    24ca1ccadea86789ecfa651686910b20bd61a1ae775969b3cbf904d963df778c

  • SHA512

    58496db0a59d886f15214270538fe05370fe2e4513ac864a8dbcd5d644573af624ff8d4b10d6c13ffde1b5062b591995eda2e7e6b92d710d149125707384087e

  • SSDEEP

    12288:heuo6R5cmgutOGrBtHLdB1+3E5zdWLCr+d6iv9su3uXEl:Iju56pGl/B1Cir+d6i2ukEl

Score
7/10

Malware Config

Targets

    • Target

      98949a479e481213c2b747263ad7501d

    • Size

      489KB

    • MD5

      98949a479e481213c2b747263ad7501d

    • SHA1

      21013b2c7d0efd7c4f065855ef7e646257a775a7

    • SHA256

      24ca1ccadea86789ecfa651686910b20bd61a1ae775969b3cbf904d963df778c

    • SHA512

      58496db0a59d886f15214270538fe05370fe2e4513ac864a8dbcd5d644573af624ff8d4b10d6c13ffde1b5062b591995eda2e7e6b92d710d149125707384087e

    • SSDEEP

      12288:heuo6R5cmgutOGrBtHLdB1+3E5zdWLCr+d6iv9su3uXEl:Iju56pGl/B1Cir+d6i2ukEl

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/Banner.dll

    • Size

      4KB

    • MD5

      0116a50101c4107a138a588d1e46fca5

    • SHA1

      b781dce23e828cf2b97306661c7dad250a6aaf77

    • SHA256

      ab80cf45070d936f0745f5e39b22e6e07ba90aa179b5ec4469ef6e2cb1b9ef6b

    • SHA512

      55de6aeaad05b01a25828553d3ea9f1b32a8b0c35c42dc6106bed244320e3421ec6a6f5359b15f9d18dd1e9692ca5572b2736d9d48cceb07b9443601d00a5988

    Score
    1/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/NSISdl.dll

    • Size

      14KB

    • MD5

      a5f8399a743ab7f9c88c645c35b1ebb5

    • SHA1

      168f3c158913b0367bf79fa413357fbe97018191

    • SHA256

      dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9

    • SHA512

      824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977

    • SSDEEP

      192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c17103ae9072a06da581dec998343fc1

    • SHA1

      b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

    • SHA256

      dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

    • SHA512

      d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/pwgen.dll

    • Size

      16KB

    • MD5

      a555472395178ac8c733d90928e05017

    • SHA1

      f44b192d66473f01a6540aaec4b6c9ac4c611d35

    • SHA256

      82ae08fced4a1f9a7df123634da5f4cb12af4593a006bef421a54739a2cbd44e

    • SHA512

      e6d87b030c45c655d93b2e76d7437ad900df5da2475dd2e6e28b6c872040491e80f540b00b6091d16bc8410bd58a1e82c62ee1b17193ef8500a153d4474bb80a

    • SSDEEP

      96:Rb32p/4mp563gfdaDf2GEFd69qI214YgU+dXXDtFCOdd7KPcC+pyTY62l2z252NJ:YCQAED61dpEEN5VifUbw2mDG0

    Score
    3/10
    behavioral10behavioral9

    • Target

      DomaIQ.exe

    • Size

      357KB

    • MD5

      539cc0298d9d8d474b673e8683e29566

    • SHA1

      3f73a9b466b83de91c9f8a75b69cc7f4b21e5549

    • SHA256

      dd8d0d76970a67b7255ffad7aef96012a8f76272d1c54fcc563bb93ac789d3fb

    • SHA512

      f9cf0ed01c0499e0e4d0f8083c2a61514405f816f50b3fc9c0546c9e4ed3accde72092665fa5e6a1ff85153b3491f23eaf9323c162c7ef41e531acdc1fe819d2

    • SSDEEP

      6144:wNHi7w5e5ToupfBuURZK/cNYTMedWB48X+3VtpqLLN4AIvAxp840:aHiuz0NYxDf/AIvAxGt

    Score
    1/10
    behavioral11behavioral12

    • Target

      DomaIQ10.exe

    • Size

      361KB

    • MD5

      d50392c6002950c8e2fc7ea0c7af4a05

    • SHA1

      8cd8fd41bbb9fdb2376b1623af9f2e850ef142ce

    • SHA256

      bfe0338d37e9cb6ceb5b47742f400f06345c713e2743947afb0db19da9428787

    • SHA512

      5e6a2ad58c24eacba09c197ed5d07e6b37c1a897cfde0fc27743087c0d6a47ee14204497c5c6af8696999ced668eb0d858ebe711d14c3f236a2eac5f3cb5addf

    • SSDEEP

      6144:viWsWgHC7CovmFmOPqaEdEal+AiYXiJcDMD9nqg1JLy4WSmWippQl:aWsu7Co+FjP0mayb7XpmWikl

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks