Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
52b983f478741fc0221c82b03d44331eae013f8d568a5911a30931861b58d971
-
Size
6.4MB
-
Sample
240606-3x28ssdh9z
-
MD5
323d7953f093a5c65ffba0537e625f51
-
SHA1
2af6e64ef75ab8f2b8c2790fbe54167a769611d5
-
SHA256
52b983f478741fc0221c82b03d44331eae013f8d568a5911a30931861b58d971
-
SHA512
545318bd7a0199425e56e85935e509af562eac5f99a4a60ea49b6eec271cbddab714e1d49e79ab6f72276db827fa0c74adc1b441afd351649584fc4b1460b6e0
-
SSDEEP
98304:muqtmpI9hdzjYiH3hhHNVadcEc2z9rOUPS0ZBv4S7CBNgIbSpvyS+ZjviCbpHTM:1qtmozjYm3fTTEc2zTDZBkbgqSpKS2hM
Malware Config
Targets
-
-
Target
52b983f478741fc0221c82b03d44331eae013f8d568a5911a30931861b58d971
-
Size
6.4MB
-
MD5
323d7953f093a5c65ffba0537e625f51
-
SHA1
2af6e64ef75ab8f2b8c2790fbe54167a769611d5
-
SHA256
52b983f478741fc0221c82b03d44331eae013f8d568a5911a30931861b58d971
-
SHA512
545318bd7a0199425e56e85935e509af562eac5f99a4a60ea49b6eec271cbddab714e1d49e79ab6f72276db827fa0c74adc1b441afd351649584fc4b1460b6e0
-
SSDEEP
98304:muqtmpI9hdzjYiH3hhHNVadcEc2z9rOUPS0ZBv4S7CBNgIbSpvyS+ZjviCbpHTM:1qtmozjYm3fTTEc2zTDZBkbgqSpKS2hM
Score10/10-
Detect Socks5Systemz Payload
-
Socks5Systemz
Socks5Systemz is a botnet written in C++.
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-