Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

e147d798b6...59.exe

windows7-x64

8

e147d798b6...59.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e147d798b6eb26e637584f67d7731ce6dd717a48b5f09d554f9fcbfdfef5d659

  • Size

    931KB

  • Sample

    221124-gzz1kadg58

  • MD5

    62fcd2666617d41ff1317e12bf15a0e0

  • SHA1

    758263829e1f79824e2e3a40b230d1d6910534ac

  • SHA256

    e147d798b6eb26e637584f67d7731ce6dd717a48b5f09d554f9fcbfdfef5d659

  • SHA512

    959e0c1a5731433087aac08c54c650009227da2c0f0f711892ce51e62c54c84a5ceb7c59775c4c5a7aee45b117221263d13dc07828054a16403067f86eb6dd0e

  • SSDEEP

    24576:h1OYdaOzMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfQ:h1Os1MWyUQ+GUVFIcHPvpfQ

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      e147d798b6eb26e637584f67d7731ce6dd717a48b5f09d554f9fcbfdfef5d659

    • Size

      931KB

    • MD5

      62fcd2666617d41ff1317e12bf15a0e0

    • SHA1

      758263829e1f79824e2e3a40b230d1d6910534ac

    • SHA256

      e147d798b6eb26e637584f67d7731ce6dd717a48b5f09d554f9fcbfdfef5d659

    • SHA512

      959e0c1a5731433087aac08c54c650009227da2c0f0f711892ce51e62c54c84a5ceb7c59775c4c5a7aee45b117221263d13dc07828054a16403067f86eb6dd0e

    • SSDEEP

      24576:h1OYdaOzMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfQ:h1Os1MWyUQ+GUVFIcHPvpfQ

    Score
    8/10
    discoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks