Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

0009956646...PY.exe

windows7_x64

7

0009956646...PY.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    000995664600.00 COPY.exe

  • Size

    404KB

  • Sample

    200710-k5nr4kqyb6

  • MD5

    c98f5be705b5401539e24a2c601772b5

  • SHA1

    0fb5bab774b284b4922e4801a479d5d7aa078b6b

  • SHA256

    0dac9d7755c33d54aa60d106bb75a2f887cbce8660a7c88b78084b415ea241f2

  • SHA512

    3af0bd7896c813cb7818f1f4a2186954a508e48ac95ad9c5f35e3058b8b0346729d37bb2f7b120191812e57d1f853f95061dfd5a7c7096bc943bdd7f43bbcf27

Score
7/10
spyware

Malware Config

Targets

    • Target

      000995664600.00 COPY.exe

    • Size

      404KB

    • MD5

      c98f5be705b5401539e24a2c601772b5

    • SHA1

      0fb5bab774b284b4922e4801a479d5d7aa078b6b

    • SHA256

      0dac9d7755c33d54aa60d106bb75a2f887cbce8660a7c88b78084b415ea241f2

    • SHA512

      3af0bd7896c813cb7818f1f4a2186954a508e48ac95ad9c5f35e3058b8b0346729d37bb2f7b120191812e57d1f853f95061dfd5a7c7096bc943bdd7f43bbcf27

    Score
    7/10
    spyware

    • Reads user/profile data of local email clients

      Email clients store some user data on disk where infostealers will often target it.

      spyware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks