Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Atdz56x_.exe
-
Size
12.3MB
-
Sample
240721-nwad3azbkh
-
MD5
3b0c401c92259543235c3107b5404ad8
-
SHA1
abfbac5bbbbf48d602656c1ca9563ac6cd14ce80
-
SHA256
55e65149970f909c5487df061dced47a508e4b3c1eee2c7329d44897829ce29e
-
SHA512
e6b052912d03e37eddf8fec1bb9f917489f5718a4c9070d64e9619b12b4488a4c1cda6e79ccda76011c1f0376bb9acd564d5f4fd4bd02c450536bce46d74ced5
-
SSDEEP
393216:H3u8Uol39JaOB0MDTQ9jmeWacXR7t7zb:YWNQA0MDTC7c9t7v
Malware Config
Targets
-
-
Target
Atdz56x_.exe
-
Size
12.3MB
-
MD5
3b0c401c92259543235c3107b5404ad8
-
SHA1
abfbac5bbbbf48d602656c1ca9563ac6cd14ce80
-
SHA256
55e65149970f909c5487df061dced47a508e4b3c1eee2c7329d44897829ce29e
-
SHA512
e6b052912d03e37eddf8fec1bb9f917489f5718a4c9070d64e9619b12b4488a4c1cda6e79ccda76011c1f0376bb9acd564d5f4fd4bd02c450536bce46d74ced5
-
SSDEEP
393216:H3u8Uol39JaOB0MDTQ9jmeWacXR7t7zb:YWNQA0MDTC7c9t7v
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-