Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

14/10/2022, 17:56

221014-wh41hseaal 7

14/10/2022, 17:48

221014-wdxewadhg3 8

14/10/2022, 17:34

221014-v5h6wsdhfn 8

General

  • Target

    Pass_1234_Setup(4).rar

  • Size

    7.9MB

  • Sample

    221014-wdxewadhg3

  • MD5

    5726dd2f698a44a236eb8118d966130e

  • SHA1

    71e206c1616d62b9ca1195bcd7c5e3abb66ca9ff

  • SHA256

    f8689e4e8a829d2b2bea37c82ffe568b2db18463e706e63cebc33e375cb8d291

  • SHA512

    45e9bfbc43040f5126f85a887a7665ed7f89b3d4f864ab596f07ed3860ea7c087cb5b9e303ffc2682a2c2943f05012aedbad81c721cad1ab3d4264931d91e457

  • SSDEEP

    196608:3NsorGhLMYayVY5tx/sGBKP6OY4F7gkOMEuL34zcl:3wQyV+xfBKPjFEklIzcl

Score
8/10

Malware Config

Targets

    • Target

      Setup.exe

    • Size

      376.9MB

    • MD5

      2f9db86c1f07387ba6b0168d62ed2950

    • SHA1

      37ffc85149a8bdb31044c82c775ce329421ff77c

    • SHA256

      cfb9b1ded6e26c2ae213126dbe5301394754b076acf7d9b033794c79c4eeb8b2

    • SHA512

      9f5a3aa0447e09409306b36b0b41dbafe9e08c0112d0a43e6194c57830b5e023271d66010130b99d58cad8f352006dc63e82567e9697eef35cd6e0fdf526ac35

    • SSDEEP

      196608:3IERCPHzGscu98PPz6qC+pTDGwud0AvEO:4ERaHzGEgOqH/GwTEEO

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks