Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

864-6-0x00...ry.exe

windows7-x64

864-6-0x00...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    864-6-0x0000000000080000-0x0000000000092000-memory.dmp

  • Size

    72KB

  • MD5

    0f81fd8285549040a1123ec63ef81d4d

  • SHA1

    e31d947474e7e1a74aa967f07528cfb24c06983f

  • SHA256

    35733011e135e6ca95aff54f2b97258bd537d4283c7b073c42648d6567f59a24

  • SHA512

    b053353059a942b52494be5627a90a4ae87690c493b91eabafea5fcae8bfd215f1f5657a9a28f649f11cabb77aec6d93dfa8b1fb2073266d0473d2137deed46d

  • SSDEEP

    768:gq+s3pUtDILNCCa+DifBLFhCb52iPNYbigeR7R6iwTMwvEgK/JHZVc6KN:gq+AGtQO9EDWbF07oJRnkJHZVclN

Score
10/10
2-iconicos-diamasyncrat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

2-ICONICOS-DIAM

C2

proyectodos307.casacam.net:8011

Mutex

DcRatMutex_qwqdanchun

Attributes
  • delay

    1

  • install

    false

  • install_folder

    %AppData%

aes.plain

Signatures

  • Asyncrat family
    asyncrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 864-6-0x0000000000080000-0x0000000000092000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections