Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Netspeedmeter.exe

  • Size

    53.3MB

  • Sample

    221019-zth4zagfbk

  • MD5

    b646435178433a3d2704e82615bddafb

  • SHA1

    a6d14282390694c7c4d916c55bd03471c927e805

  • SHA256

    f8b234082461ac20ad8075759e9b05e29f8fa8f77ae4223a1e7fc5a6f4e47c38

  • SHA512

    df9f748f7cbfaf9fec62d8e1c2e515f3081254ab4c175a15c683a033a6cecce652f018c96c8a65602eb39952415bae1ead91e491767ebad64598b304f3c60cd4

  • SSDEEP

    1572864:ZDSG9Ztq9oJeQvy4GTY4B9HPkNNOTFlYK00:ZTRXGhpkNNOTFlYK00

Malware Config

Targets

    • Target

      Netspeedmeter.exe

    • Size

      53.3MB

    • MD5

      b646435178433a3d2704e82615bddafb

    • SHA1

      a6d14282390694c7c4d916c55bd03471c927e805

    • SHA256

      f8b234082461ac20ad8075759e9b05e29f8fa8f77ae4223a1e7fc5a6f4e47c38

    • SHA512

      df9f748f7cbfaf9fec62d8e1c2e515f3081254ab4c175a15c683a033a6cecce652f018c96c8a65602eb39952415bae1ead91e491767ebad64598b304f3c60cd4

    • SSDEEP

      1572864:ZDSG9Ztq9oJeQvy4GTY4B9HPkNNOTFlYK00:ZTRXGhpkNNOTFlYK00

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks