Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

946c131922...e3.exe

windows7-x64

8

946c131922...e3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    946c131922e88b7797cf24dd6c61c4dcadbe732b94be1210615cdd7602ebf2e3

  • Size

    124KB

  • Sample

    221020-kcsvhsdfc9

  • MD5

    817737219678764a7fd08f40914d2d51

  • SHA1

    43f8583480b0d101d4068f93b68edff5f61d37fa

  • SHA256

    946c131922e88b7797cf24dd6c61c4dcadbe732b94be1210615cdd7602ebf2e3

  • SHA512

    02c108585f42d19b0dbc0a26ba251acc1d1f15ff9a3de6f6640b935b2d9172e187333ef6969a9b631a71007ba344e610bfa75c151f367cc755fc12d0ab94ee6c

  • SSDEEP

    1536:t5e0OGonYVwR5CiZFjbu+QF0YEF+7oTMrTs5995S+UZZS/zAhkS+yBO5L9FZ9zSM:jeDh2wR5NZ/c7oY+TSJZZS72K3jGiC

Score
8/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      946c131922e88b7797cf24dd6c61c4dcadbe732b94be1210615cdd7602ebf2e3

    • Size

      124KB

    • MD5

      817737219678764a7fd08f40914d2d51

    • SHA1

      43f8583480b0d101d4068f93b68edff5f61d37fa

    • SHA256

      946c131922e88b7797cf24dd6c61c4dcadbe732b94be1210615cdd7602ebf2e3

    • SHA512

      02c108585f42d19b0dbc0a26ba251acc1d1f15ff9a3de6f6640b935b2d9172e187333ef6969a9b631a71007ba344e610bfa75c151f367cc755fc12d0ab94ee6c

    • SSDEEP

      1536:t5e0OGonYVwR5CiZFjbu+QF0YEF+7oTMrTs5995S+UZZS/zAhkS+yBO5L9FZ9zSM:jeDh2wR5NZ/c7oY+TSJZZS72K3jGiC

    Score
    8/10
    persistencespywarestealerupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks