Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
97f0e16f3af3d526e8122a058a07cccd99906b9a50f1d15bcf96283c29949df2
-
Size
249KB
-
Sample
221202-bvfs8sea2y
-
MD5
5954246a0b09e7e8f609434e4b4b6650
-
SHA1
2b9d4c35b0a9c454de7ce1debd1e5e178276279f
-
SHA256
97f0e16f3af3d526e8122a058a07cccd99906b9a50f1d15bcf96283c29949df2
-
SHA512
f8fbd4d44640447a65298c03a7d645cd5185262110d97ebc403e02bb89250a7100b945683c161675bb25d9c3906580b94dd8c7b7e1139d2d4c5b123445752405
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5Nz24TWepY3333XI7aAPRf:h1OgLdaONxTWmYH3wJt
Malware Config
Targets
-
-
Target
97f0e16f3af3d526e8122a058a07cccd99906b9a50f1d15bcf96283c29949df2
-
Size
249KB
-
MD5
5954246a0b09e7e8f609434e4b4b6650
-
SHA1
2b9d4c35b0a9c454de7ce1debd1e5e178276279f
-
SHA256
97f0e16f3af3d526e8122a058a07cccd99906b9a50f1d15bcf96283c29949df2
-
SHA512
f8fbd4d44640447a65298c03a7d645cd5185262110d97ebc403e02bb89250a7100b945683c161675bb25d9c3906580b94dd8c7b7e1139d2d4c5b123445752405
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5Nz24TWepY3333XI7aAPRf:h1OgLdaONxTWmYH3wJt
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-