Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
02a6d61c9cebf8c920cc07d34236c7414e495ee2a63702dac6d0f521c4c0af18
-
Size
5.1MB
-
Sample
240704-v8w7xssgkc
-
MD5
258cb65b2b0594931af16a2e2e4f8df6
-
SHA1
1693fe87579d44cb180b5b0f6dfaaf6b51488b75
-
SHA256
02a6d61c9cebf8c920cc07d34236c7414e495ee2a63702dac6d0f521c4c0af18
-
SHA512
ab6cf6385574fb646e27928eef209b9cb4cc432870e7d736dfef2414e0887d3b787c1fc7ce98b98ddf80b2c7686a990eceb18bee522f9e6c79058c053dc55e32
-
SSDEEP
98304:C3FRIuPPqB12guaOw/+UTBFKD3g4ZnX3HoK74bLa3+EC9iV4orr4dhTsQx2Yy:nu3qBwguaf+iBFLSYh+CG+iQAYy
Malware Config
Targets
-
-
Target
02a6d61c9cebf8c920cc07d34236c7414e495ee2a63702dac6d0f521c4c0af18
-
Size
5.1MB
-
MD5
258cb65b2b0594931af16a2e2e4f8df6
-
SHA1
1693fe87579d44cb180b5b0f6dfaaf6b51488b75
-
SHA256
02a6d61c9cebf8c920cc07d34236c7414e495ee2a63702dac6d0f521c4c0af18
-
SHA512
ab6cf6385574fb646e27928eef209b9cb4cc432870e7d736dfef2414e0887d3b787c1fc7ce98b98ddf80b2c7686a990eceb18bee522f9e6c79058c053dc55e32
-
SSDEEP
98304:C3FRIuPPqB12guaOw/+UTBFKD3g4ZnX3HoK74bLa3+EC9iV4orr4dhTsQx2Yy:nu3qBwguaf+iBFLSYh+CG+iQAYy
Score10/10-
Detect Socks5Systemz Payload
-
Socks5Systemz
Socks5Systemz is a botnet written in C++.
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-