Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca
-
Size
833KB
-
Sample
221126-a94ceaag76
-
MD5
c2d048ea998382f15fd1d3e94ebd3712
-
SHA1
e6294f4091342a8bfe32b89087800d2f8596a631
-
SHA256
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca
-
SHA512
e76506165951752613e12945fec456cdf7ad26a8cb345f54390699e8c19887ce8c006b85543af4ad5fdcc1c6f53194b2d7e4e894d6be6e179dc973adcef3ccc5
-
SSDEEP
12288:2TABwhaHQNxbJzhyxBPtC7JS2udrc7JSJBSNV3SFGGKUC729D1SsEA:VegQbbpSBPoSlRc7MJENAFh+29DgsE
Static task
static1
Behavioral task
behavioral1
Sample
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca
-
Size
833KB
-
MD5
c2d048ea998382f15fd1d3e94ebd3712
-
SHA1
e6294f4091342a8bfe32b89087800d2f8596a631
-
SHA256
d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca
-
SHA512
e76506165951752613e12945fec456cdf7ad26a8cb345f54390699e8c19887ce8c006b85543af4ad5fdcc1c6f53194b2d7e4e894d6be6e179dc973adcef3ccc5
-
SSDEEP
12288:2TABwhaHQNxbJzhyxBPtC7JS2udrc7JSJBSNV3SFGGKUC729D1SsEA:VegQbbpSBPoSlRc7MJENAFh+29DgsE
Score10/10-
ISR Stealer
ISR Stealer is a modified version of Hackhound Stealer written in visual basic.
-
ISR Stealer payload
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-