Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d497474011438afa611bc8b756857582
-
Size
757KB
-
Sample
241129-k9drvssnfn
-
MD5
d497474011438afa611bc8b756857582
-
SHA1
dd2e37d0f228d5c574389f4f3d2d5beab378fcb1
-
SHA256
1e8738cc07b65b6a82663814e26d13efd4cb21a5b31afec4395610da5cc0b879
-
SHA512
d2d3a5a65ebd05158ad4076ac92547b53ce053d3e859abd3c8da89c2011f0cf4458f88c225740a721e3fdb10a07c18db54f349ad2003a9c5a907e8a9ba8192eb
-
SSDEEP
12288:rMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9ISv:rnsJ39LyjbJkQFMhmC+6GD9
Malware Config
Extracted
xred
xred.mooo.com
-
email
xredline1@gmail.com
-
payload_url
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978
https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1
http://xred.site50.net/syn/SUpdate.ini
https://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&export=download
https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1
http://xred.site50.net/syn/Synaptics.rar
https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download
https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1
http://xred.site50.net/syn/SSLLibrary.dll
Targets
-
-
Target
d497474011438afa611bc8b756857582
-
Size
757KB
-
MD5
d497474011438afa611bc8b756857582
-
SHA1
dd2e37d0f228d5c574389f4f3d2d5beab378fcb1
-
SHA256
1e8738cc07b65b6a82663814e26d13efd4cb21a5b31afec4395610da5cc0b879
-
SHA512
d2d3a5a65ebd05158ad4076ac92547b53ce053d3e859abd3c8da89c2011f0cf4458f88c225740a721e3fdb10a07c18db54f349ad2003a9c5a907e8a9ba8192eb
-
SSDEEP
12288:rMSApJVYG5lDLyjsb0eOzkv4R7QnvUUilQ35+6G75V9ISv:rnsJ39LyjbJkQFMhmC+6GD9
Score1/10 -