Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    main.exe

  • Size

    14.8MB

  • Sample

    221125-takksshd48

  • MD5

    193ed38bf4001a0796210f6c90a25891

  • SHA1

    8294acd20d7a869eefa39846d651afe1f7679f20

  • SHA256

    b2773d8389fb0cdef95484b3744dc38576d743fa6d81d6f2b74c936f81e67b25

  • SHA512

    d5e612801785aa34bfa1643152b16e2a892ecda06c7b5fcc0519d61cbf701afea3e4982bc4c5ef0fc0983b18184950beb365951811c10a835399622850bcb68b

  • SSDEEP

    196608:EUa01+o/IFOeNeNJm3AqxInY7/sWBuIyv8ldf5O/qtNdpfnT8obK9:/+oue/m3pxIusWbyv8l55OMpnT8obK

Malware Config

Targets

    • Target

      main.exe

    • Size

      14.8MB

    • MD5

      193ed38bf4001a0796210f6c90a25891

    • SHA1

      8294acd20d7a869eefa39846d651afe1f7679f20

    • SHA256

      b2773d8389fb0cdef95484b3744dc38576d743fa6d81d6f2b74c936f81e67b25

    • SHA512

      d5e612801785aa34bfa1643152b16e2a892ecda06c7b5fcc0519d61cbf701afea3e4982bc4c5ef0fc0983b18184950beb365951811c10a835399622850bcb68b

    • SSDEEP

      196608:EUa01+o/IFOeNeNJm3AqxInY7/sWBuIyv8ldf5O/qtNdpfnT8obK9:/+oue/m3pxIusWbyv8l55OMpnT8obK

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks