Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
DARKARMY-3.zip
-
Size
335KB
-
Sample
240522-gf3x4sdh56
-
MD5
d2c43b08c59892e7769a90d9d97685ff
-
SHA1
1580c8a353393146ae2847668646022d870b1088
-
SHA256
ce8ec470456105dd335c7c0154d8dc5a4209b9e7003c365b1dd4d6092576c56e
-
SHA512
013e4089c6dd190cfd13479ecd213afa18ee3232daf9418b1e28e7a20b3508851c06b43cbcaa561250214ba82789986b34cb82d98917322f0faf2fba3c386da7
-
SSDEEP
6144:LFF5imHmeO3wwxs3dgcAM3aGPYe2sXDKb2GSOvAnwflS3y/4SydB21tLCj:BfiA8gwatgnEaGPYe2CDKaG4wflxAvbR
Static task
static1
Behavioral task
behavioral1
Sample
DARKARMY-3/darkarmy.py
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
DARKARMY-3/darkarmy.py
-
Size
47KB
-
MD5
8a59fd278fe9ff2d6ec89bbf3185f42e
-
SHA1
76d6dca1be36c243537f6fc4cd76557578fc0975
-
SHA256
8bbc02da18afc046797dd2c26b74439c3367af3a1a675e3dc0e2c49d0da1c71a
-
SHA512
e3ec7ac075e3369ddb6a6803bdb143390192c58c99b1af1034404605678c9c8a4819c210f3ea2beeaf623452d8e733ad783618584254aaf13277624882c14ec1
-
SSDEEP
768:6UThsBgggIA9aSAOMbrSoQbGsODCzvYgDaUotW/bLlUiMI+R1wmO/7eWesMJyZEx:6UTqVCbcW/eWkybAGB+/qtBlwH40
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-