Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8a5e09cfc4197b9a8fd3b1ed0b31d0ffd45ecc35d3708eaee29633f24f1bd6bf
-
Size
362KB
-
Sample
221102-2f7lhscda8
-
MD5
74577d9723dda2437d5ad6b8593f82dc
-
SHA1
954c88b5335d2f607886dd441d76864234e07dc6
-
SHA256
8a5e09cfc4197b9a8fd3b1ed0b31d0ffd45ecc35d3708eaee29633f24f1bd6bf
-
SHA512
2d7253a2b682c35ebe01012b9ae4e89034d4583ff6aea7404fa678361779a2ef0b8d3de9effa538d3d7419b433ae7b7f708df1c47a685a3e7b503ae35782538d
-
SSDEEP
6144:L/d+L1tmlJGCgz3jgfdz4uCSTv8g+f4qsOzEeC7ITsq:L/d+htmlEDHgf54dvHMqEeC7
Malware Config
Targets
-
-
Target
8a5e09cfc4197b9a8fd3b1ed0b31d0ffd45ecc35d3708eaee29633f24f1bd6bf
-
Size
362KB
-
MD5
74577d9723dda2437d5ad6b8593f82dc
-
SHA1
954c88b5335d2f607886dd441d76864234e07dc6
-
SHA256
8a5e09cfc4197b9a8fd3b1ed0b31d0ffd45ecc35d3708eaee29633f24f1bd6bf
-
SHA512
2d7253a2b682c35ebe01012b9ae4e89034d4583ff6aea7404fa678361779a2ef0b8d3de9effa538d3d7419b433ae7b7f708df1c47a685a3e7b503ae35782538d
-
SSDEEP
6144:L/d+L1tmlJGCgz3jgfdz4uCSTv8g+f4qsOzEeC7ITsq:L/d+htmlEDHgf54dvHMqEeC7
Score10/10-
Amadey
Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
-
Detect Amadey credential stealer module
-
Blocklisted process makes network request
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads local data of messenger clients
Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
-
Accesses Microsoft Outlook profiles
-