Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

VanishRaid...src.py

windows7-x64

3

VanishRaid...src.py

windows10-2004-x64

3

VanishRaid...rt.bat

windows7-x64

7

VanishRaid...rt.bat

windows10-2004-x64

7

VanishRaid...sh.exe

windows7-x64

7

VanishRaid...sh.exe

windows10-2004-x64

7

Resubmissions

21/07/2024, 13:40

240721-qyy7bavbrn 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VanishRaider-main (3).zip

  • Size

    18.9MB

  • Sample

    240721-qyy7bavbrn

  • MD5

    7d336dffedcb9d48b7d8ee461d9dc682

  • SHA1

    fca6b7f4006869c0921c7e0ad285dc7885512733

  • SHA256

    b7de183a04814517e3f700f704780823afb690d0fe18192fc7167fce374e6091

  • SHA512

    fb0c565e4710b1c4d0a9c97e96a4cc76f8d037cf68460e91024d59f95434e994bcd7e348ede25007b18d006b5a6df87035b0c6a31871ed9a04ab93e13adbbe6a

  • SSDEEP

    393216:mDrpJRAUEDKiDABQdA0464CylAILPXXSpeYUmdr8fSf54cfFcvc+J:mDrXHE0sAI4CFKvXSpeYU0YqSoKvH

Score
7/10

Malware Config

Targets

    • Target

      VanishRaider-main/src.py

    • Size

      117KB

    • MD5

      6d6c43dd517eb918c9a159e0d70f6af5

    • SHA1

      3b21a24445b9ae57466bc899d786ef0b45d151ad

    • SHA256

      c639e24837d454b65002a1ef26e176156b419020ce21eb02d2170204e6d72ec9

    • SHA512

      e0a27cdd14ef51c1f3b6a631a9f8c9c256e5c2a19d07c7db478e77da2e88e3f91e1b5ce9ce51d6188545b09142e89f2c4d07d11a4d2d408a65c751609246e377

    • SSDEEP

      48:bssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssu:G

    Score
    3/10
    behavioral1behavioral2

    • Target

      VanishRaider-main/start.bat

    • Size

      53B

    • MD5

      e38e79cebbdfacf7ba682312476fbd35

    • SHA1

      b37055053de72e8cfb392cce72953ec476243d77

    • SHA256

      3007e52464e534449583e4a41aa5888c23bd58c2f907e911f738eb223fc10061

    • SHA512

      9dde6da21ca02ffeb0ee9cb0677cee51916ab5ed91dae575563617992a2b400c117b5e83350742fbb79cf65ef90ea1f40abc3d7e434e8be2b6ad71d403e0e19f

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral3behavioral4

    • Target

      VanishRaider-main/vanish.exe

    • Size

      19.1MB

    • MD5

      675fac5cf2e97a8570df5e341d256393

    • SHA1

      42479fc5a049475ec3acbe0aa41d353fe893640e

    • SHA256

      c60a23a464eecfb19075a26d8141eac4297fa7e3870b9551a0cf7ec1094d5581

    • SHA512

      05251e3b0196708f3d7f87359cbf9169f138b3bdcfc2589cf4a0a3dec9fae7d92fec0c5af40186bf3955e63f17e3627494d47ab60cce85584b3c39717586a826

    • SSDEEP

      393216:xjdHrgwiX9lHYPYcgfSVfEBqU673pPI4vCc+dQSlbKxgm:xjVliTkYLS2Uh73pPIMpCQgmx

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks