Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

27/08/2024, 13:46

240827-q293zstcrb 8

27/08/2024, 13:43

240827-q1a79svfjl 7

27/08/2024, 13:39

240827-qx5byatbkb 7

General

  • Target

    Dreem V3.1.zip

  • Size

    50.3MB

  • Sample

    240827-q1a79svfjl

  • MD5

    2a36d22330951a2e7a27a344b66f5f0a

  • SHA1

    90e9d882d12f6a39355966d75e9d549f62ac0018

  • SHA256

    ec57fcc6c15b4b30a1a35365b0875442cba750c93bb31155bad4b589af35e102

  • SHA512

    ec15f5bc74d058fdf3a08eed1f7b2fd1605e26bef946994a1673355eda77c23fedd833f92554fded9e61c1a184de430410d00771f1b38ff80cf05493b1b9ad13

  • SSDEEP

    1572864:By56nNXeF5Dga1ZX2MQWh/ifo/lvFpcFUZ:ByeNuHPZlQWhs6l6a

Score
7/10

Malware Config

Targets

    • Target

      Dreem/2024 star of the night Api.dll

    • Size

      19KB

    • MD5

      94cb4cc0b7d68ee43b77dd9c0801aed2

    • SHA1

      e6221c925e43b303981b19a695920b3efa57b292

    • SHA256

      3c23c368d7ade58ab8dc19a9e04f9299f07f177cd61284da5f32e6411ceb8186

    • SHA512

      9e5e72e43d051cc5f081c177cf291f4966f5521c1e9cf4c33adfcf13853343627d43f48853538e1470ff45b0655316b6ac9a0acceacb3ce742e3089a81f9bd5e

    • SSDEEP

      384:Jzmjj5qR4+A+Psppx7hZJlmMaDCzfHbkkqJ8sr7xrPX:Jyfq4px7hnzLYr7tPX

    Score
    1/10
    • Target

      Dreem/CeleryIn.bin

    • Size

      44KB

    • MD5

      65802af5e2a4bd6829fe548f0eb6d76c

    • SHA1

      3b57bed15edaf8c63e1a52418e87314fc7d1c868

    • SHA256

      7b954b2cd89067d44ed49782ee18d4ecbe99755a81de068c1fc4ba2b87b1f30e

    • SHA512

      9bfb63e18c8ba59db6f96a511c296e805bba28579a3adb69c685c3776c35a34a8bc0be7d44d34a1d994f1c64af1cac634b8a70a33d36a63ebc140f0fa018c930

    • SSDEEP

      384:MiBAxILGlECtQpfXt3AbXdE72kfuRnodBBdlAmA2QdwKFISFr:M9GpWrdEigu6H7A2nS

    Score
    1/10
    • Target

      Dreem/Dreem.exe

    • Size

      1.1MB

    • MD5

      c99581b51bd1a7034787ca69524cdf37

    • SHA1

      bee131afd8a734e77531f4bd10ff7ed83f8205fa

    • SHA256

      88c99d822493ae68271a78042a69287654f937924ee932b9afe3c246e558b708

    • SHA512

      e71d4ac923584a9103510fcc0ad870d614d0478d9db375b9d6dae15bb5190122933d8211dc8960ec67749880120a0f4022c8bd2f8b07420fdb63d626694d4258

    • SSDEEP

      6144:7AVB05euDgQuJvwCvW6qmmJvwCvW6qmbDFfoIs9q:7AVB05XeJvzx+Jvzxtf1sk

    Score
    6/10
    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Target

      Dreem/FastColoredTextBox.dll

    • Size

      325KB

    • MD5

      adac0cee5cc4de7d4046ae1243e41bf0

    • SHA1

      c8d6d92f0dbee64d0f4c0930f0d2699a8253e891

    • SHA256

      68d0e444c0b27552d2cb86501dcb7db3fd64b82d966e9708db0408ec1ba38c79

    • SHA512

      1d7af604540532a4121850760b1e401bb6356e59503c26f3d1fa358a105b7d88362c92f78aa4394095b165f06c484b8c2d2ed640380e85ef9b3eb087d3e7c869

    • SSDEEP

      6144:CbgkJe4jG4m3oCCClXA34Wm5pVg/IWTKZCQOsqJLDd5eNqwDl1HD5:CbgEGv3oCCQAohVgSLmeNfD

    Score
    1/10
    • Target

      Dreem/MasterAPI.dll

    • Size

      17KB

    • MD5

      d7c65af01ec525d2df21fd2e2c1a7dc0

    • SHA1

      2e54f24ee5d76935fc0109bae23f3079a4a42687

    • SHA256

      2a59bd5fc8af5133f5df13f0a2cbcf19c6bc8b11bdd4c2bf8c8feac67873ab59

    • SHA512

      e82449375c8d801496ab3aab2a454ec4be7d7c44bf5d5371b8b672bc1f2bf20c2822d7b25a4b295103b9988da8434ca24abbc992665cbfc94cc60fdf7e7238ac

    • SSDEEP

      384:lghvYOkW7e3eCm8jLtpp/wEaOBaEpb9yPvQ/zGpQV71j8:evYOT7e3eaLfRAnEpbyoLGpQ9d

    Score
    1/10
    • Target

      Dreem/MasterInject.exe

    • Size

      5.7MB

    • MD5

      90d0a596ae30160e8fe03a808a4c3cbf

    • SHA1

      d0816ead5479c407f689f4b37215a08edd3336d2

    • SHA256

      9623fa4cd74e4cd3c9a43c70375353f4e153e63f9171a47142e6ca5aad276f48

    • SHA512

      454bddb349e68e23d3164ca0c014e260b9d129cd015b2c7330a7474b89ac0c6df6a73e2555789dbde9bd853ad50051575f5967caef3cdc8be0434c96b3d80203

    • SSDEEP

      49152:444uke5EB61w1q9KEz6XK9X0/Cr73HSVDGjVNyJo+nPp09BT7FsgsEcs474wssuH:4zrXWNKxO5

    Score
    1/10
    • Target

      Dreem/Menu.exe

    • Size

      9KB

    • MD5

      716616942c73c987f151a401f550fba8

    • SHA1

      c429993e9322f23f6fd58e30812e38bf87f5348a

    • SHA256

      c1c46fa5907fa10199e6772cc7527e46bdfec190b2ce03f9fbcd2d0015ae2791

    • SHA512

      c2b9a07294cd970e9eeb35c9d4f933643f106c32eeb97eb3780138ee23e8596ba3cd6115e580c0b6b6b286983b6c7082ab7ac5f156b86698dcd1accceaef8922

    • SSDEEP

      192:Xf3WvA1wwZTR6YvurlaLVYtLSoqpOpHVL3LKLZCuwBWopJVYwefCr9ST:Xf3WA1wwZTDOlaLIL5qpOpHVL3LKLiBs

    Score
    3/10
    • Target

      Dreem/Scripts/Blox Fruit Script.txt

    • Size

      244KB

    • MD5

      77b6545a624fe2b264582d1833a6bdce

    • SHA1

      a2b876519d828c644e62e083c560176a2e547324

    • SHA256

      d34e6dd47be387649a7226badaf110bce450ebc3eb11d489f1d84eddc9e2e9b7

    • SHA512

      5f9130eb3c1b722ddd62de9c025bbb622b3a65808755badc83e59d3db05113f2ed103cb8134cdaf2d005e73bc4f3a28ff126eafd5ac104ae904587ee92cdeb58

    • SSDEEP

      3072:uHYv4+WHrHiO6wDB/mYUo9GOVNtguPe4V/2zIGWaFHudAW5K22JwhH7ZNn2ASF6w:u458HuGBOYUwxe5zIGLk/5+ehVYASh3

    Score
    3/10
    • Target

      Dreem/Scripts/Infinite Yeild.txt

    • Size

      464KB

    • MD5

      b7fd97a54c618754ceab75e8a5c2de10

    • SHA1

      feb96643a76f785177fa4e841b92e6a0af364180

    • SHA256

      784f1c6ac0d4a3abdce59e09b0e9b52da6c426136cf0bfd775445e8194b77ddc

    • SHA512

      078f305142e6b2d3300d249ba305897374e0d5a78e6db9ac902370b1eee433ee83322568735b3d82706fd1fc117dcbd3fe60ad5c2d8cada8deb36b2de6da7921

    • SSDEEP

      6144:OkrLwE7/2eTtOWGhzWtRNY9gIBuQulO7oFo5n4Xd9wDhoQhGZtUi8/1j304U48uH:OkrLwE4WG6NYQFOn4Xyipo

    Score
    3/10
    • Target

      Dreem/Scripts/Super Hero Tycoon.txt

    • Size

      45KB

    • MD5

      2621c25c8d68b4f7d59b04dd9cb7df76

    • SHA1

      39f3796a308e9bb51b9683e919526741c9f8b330

    • SHA256

      da380ec465050071b1c313e55a094eff416aac8d746965b799991b79c18ede3f

    • SHA512

      4fb94c8161870713b8ab17d74f8ead8b7c7504862aa104cdb183076d4c419be8042498bd439da562ae0431be157bdfda9416be2d5038b39d1ec9033b478a9e7f

    • SSDEEP

      768:1JF6q+wQdJKg9bgW/IwBtx4D//2FImVRzHisHWQpyOocHtNxPY/zfBlYzzqwqpIx:4dlbvp4LuFzVxHiDPFVFhiLZ

    Score
    3/10
    • Target

      Dreem/Shaakey-idfk12-09d89e6/main.exe

    • Size

      22.3MB

    • MD5

      01d47112d18f6fbac82ca624446c4979

    • SHA1

      7e9158e9a09995e9381f3e6349bc827f8216910d

    • SHA256

      8f793075f2fdd4dc2a4ef27b275c4efd83a5a8ef64295c40dc92b8dbaac71279

    • SHA512

      9d8743578c336a13279b6af709ba7e73ed4236ebb0634c9df0c6228b9f164cf73d06898eedd0a9310ef1fb14686b2b893833167f1a4b21db963d07a8ca31c2d4

    • SSDEEP

      393216:Wqil0KbTLzUj/TwsIs0DLSPB0MgNb3W7PBuhxJWjSHHax4:mlRze6+PB01lEZoCSHF

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      Dreem/main.exe

    • Size

      25.8MB

    • MD5

      0c53c08f94dbb456aa4e13c4c1c34f4d

    • SHA1

      4ca43734541c32b133cda0e1419ac6818b6014e8

    • SHA256

      f5880727c5bdd2668488a58f4539ee45725987d30385813c1640248e2ca90a97

    • SHA512

      e866d4362403cce625c99b897180501a6e29f1c805e4140155e53fc1b0b2344ca8bc89c34c941b23f078d20279b871ca730342c55360e5b7893d70786b3faec6

    • SSDEEP

      786432:4Rqbpsy5PxzhqHLdOfllSlk2qfGIeAvREZdCYR4Owqnu:44s6P2rQX0k2zI5vqdCo2q

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks