Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

864-6-0x00...ry.exe

windows7-x64

864-6-0x00...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    864-6-0x0000000000080000-0x0000000000092000-memory.dmp

  • Size

    72KB

  • Sample

    240731-v1lq8avfqk

  • MD5

    0f81fd8285549040a1123ec63ef81d4d

  • SHA1

    e31d947474e7e1a74aa967f07528cfb24c06983f

  • SHA256

    35733011e135e6ca95aff54f2b97258bd537d4283c7b073c42648d6567f59a24

  • SHA512

    b053353059a942b52494be5627a90a4ae87690c493b91eabafea5fcae8bfd215f1f5657a9a28f649f11cabb77aec6d93dfa8b1fb2073266d0473d2137deed46d

  • SSDEEP

    768:gq+s3pUtDILNCCa+DifBLFhCb52iPNYbigeR7R6iwTMwvEgK/JHZVc6KN:gq+AGtQO9EDWbF07oJRnkJHZVclN

Score
10/10
asyncrat2-iconicos-diam

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

2-ICONICOS-DIAM

C2

proyectodos307.casacam.net:8011

Mutex

DcRatMutex_qwqdanchun

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Targets

    • Target

      864-6-0x0000000000080000-0x0000000000092000-memory.dmp

    • Size

      72KB

    • MD5

      0f81fd8285549040a1123ec63ef81d4d

    • SHA1

      e31d947474e7e1a74aa967f07528cfb24c06983f

    • SHA256

      35733011e135e6ca95aff54f2b97258bd537d4283c7b073c42648d6567f59a24

    • SHA512

      b053353059a942b52494be5627a90a4ae87690c493b91eabafea5fcae8bfd215f1f5657a9a28f649f11cabb77aec6d93dfa8b1fb2073266d0473d2137deed46d

    • SSDEEP

      768:gq+s3pUtDILNCCa+DifBLFhCb52iPNYbigeR7R6iwTMwvEgK/JHZVc6KN:gq+AGtQO9EDWbF07oJRnkJHZVclN

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks