Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c5972cdc40f2940243710c8896dcb476a1b49cfedfaa3f439f518c28001b4c71
-
Size
299KB
-
Sample
250308-nmgf1swvb1
-
MD5
1aab2cf6b0b96bddf9fcc9b7246e69af
-
SHA1
26687cb2c7e2e5cfbbd50787a9d89fa2515d38db
-
SHA256
c5972cdc40f2940243710c8896dcb476a1b49cfedfaa3f439f518c28001b4c71
-
SHA512
e6e5eff0fcdb35255dc43fd5e8e506e086f331a74d3be9e4f3a9c9238eea95701ebf4ffbd4c9deb12dcadc1ba616f4485547d664c5dce2197793331959183e9c
-
SSDEEP
6144:gT60He5YGChLesrsBoLczqP2Ms6ZAprXp+33:x0+uNvsKczqeMxAXp+3
Malware Config
Targets
-
-
Target
c5972cdc40f2940243710c8896dcb476a1b49cfedfaa3f439f518c28001b4c71
-
Size
299KB
-
MD5
1aab2cf6b0b96bddf9fcc9b7246e69af
-
SHA1
26687cb2c7e2e5cfbbd50787a9d89fa2515d38db
-
SHA256
c5972cdc40f2940243710c8896dcb476a1b49cfedfaa3f439f518c28001b4c71
-
SHA512
e6e5eff0fcdb35255dc43fd5e8e506e086f331a74d3be9e4f3a9c9238eea95701ebf4ffbd4c9deb12dcadc1ba616f4485547d664c5dce2197793331959183e9c
-
SSDEEP
6144:gT60He5YGChLesrsBoLczqP2Ms6ZAprXp+33:x0+uNvsKczqeMxAXp+3
Score10/10-
Chinese_generic_botnet family
-
Generic Chinese Botnet
A botnet originating from China which is currently unnamed publicly.
-
Chinese Botnet payload
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-