Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
59e885eec9bd267be13ef42bfe4334de953721556ba780e591c7b9343d12e159
-
Size
4.7MB
-
Sample
240527-rw9qpsff7y
-
MD5
12e13492174516c6c0dc91d2c04e5dba
-
SHA1
334ba170e32eb9ef281fda47dfe9d7eba91f583d
-
SHA256
59e885eec9bd267be13ef42bfe4334de953721556ba780e591c7b9343d12e159
-
SHA512
495ffab453e73f7e17cd88466c6e976f71c7460ae86eedbdc902df18dcf41a323a27511e3195810a6a1a8d7c384c36b7021f8b4b06954fa08fcef835df72ade1
-
SSDEEP
98304:m6xqATbhIsGqlhSghKNXYyEeQJ67HDjeHgt9PcAUjmJwnNi56C:syrGqlhSNQwrDjJ/PFUjmiI5n
Malware Config
Targets
-
-
Target
59e885eec9bd267be13ef42bfe4334de953721556ba780e591c7b9343d12e159
-
Size
4.7MB
-
MD5
12e13492174516c6c0dc91d2c04e5dba
-
SHA1
334ba170e32eb9ef281fda47dfe9d7eba91f583d
-
SHA256
59e885eec9bd267be13ef42bfe4334de953721556ba780e591c7b9343d12e159
-
SHA512
495ffab453e73f7e17cd88466c6e976f71c7460ae86eedbdc902df18dcf41a323a27511e3195810a6a1a8d7c384c36b7021f8b4b06954fa08fcef835df72ade1
-
SSDEEP
98304:m6xqATbhIsGqlhSghKNXYyEeQJ67HDjeHgt9PcAUjmJwnNi56C:syrGqlhSNQwrDjJ/PFUjmiI5n
Score10/10-
Detect Socks5Systemz Payload
-
Socks5Systemz
Socks5Systemz is a botnet written in C++.
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-