Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7f061eb89d4be829d3ad69ea176ff3fee46b0fa6f1d98ec3f5bf42dc8dcb8579

  • Size

    4.8MB

  • Sample

    241118-mqg2aavbrd

  • MD5

    09a294cded9ae6488dd00dcc9827a3ad

  • SHA1

    0a870ed558ada240a2fea597f59c30cbda747be1

  • SHA256

    7f061eb89d4be829d3ad69ea176ff3fee46b0fa6f1d98ec3f5bf42dc8dcb8579

  • SHA512

    2078bfb6e21efe6ff3b318b00d9ec16a0b01f14b0a541005a2dde380ec7e6b14127beaf95274d2edd7e4f61dd755320775bb63b5dcdccba7162b83dd78ed76b4

  • SSDEEP

    98304:NgmCb9DBWVR2o543Fh+Uo0vbWNlXhuhazIIPms9UqC9NZ0tdhs:dCxo2k4X+niIoaNjUXZ0tXs

Malware Config

Targets

    • Target

      7f061eb89d4be829d3ad69ea176ff3fee46b0fa6f1d98ec3f5bf42dc8dcb8579

    • Size

      4.8MB

    • MD5

      09a294cded9ae6488dd00dcc9827a3ad

    • SHA1

      0a870ed558ada240a2fea597f59c30cbda747be1

    • SHA256

      7f061eb89d4be829d3ad69ea176ff3fee46b0fa6f1d98ec3f5bf42dc8dcb8579

    • SHA512

      2078bfb6e21efe6ff3b318b00d9ec16a0b01f14b0a541005a2dde380ec7e6b14127beaf95274d2edd7e4f61dd755320775bb63b5dcdccba7162b83dd78ed76b4

    • SSDEEP

      98304:NgmCb9DBWVR2o543Fh+Uo0vbWNlXhuhazIIPms9UqC9NZ0tdhs:dCxo2k4X+niIoaNjUXZ0tXs

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

    • Socks5systemz family

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.