Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

PixelPlaceTR.exe

windows10-1703-x64

7

PixelPlaceTR.exe

windows7-x64

7

PixelPlaceTR.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PixelPlaceTR.exe

  • Size

    101.0MB

  • Sample

    221217-s7g1habf6t

  • MD5

    da46016006c4040fcbb3fff2531ee187

  • SHA1

    53e0a8199d0bc484736412cd45a0b7e0536fa00a

  • SHA256

    45f13c3805148a32cfacc6ab4a4d97df519f9f9a6eb4d91dca93629068241bc9

  • SHA512

    c3f9b6cfdeb756653f14f42eeec5d80eb8db1aa5e30a47c0ef62947a81537c66eec649e71538da3381b8df760c588886dad3cb2671f0e16fbc1e8b69e1524a7a

  • SSDEEP

    3145728:dI2y4dgYRgWYDtBQgwothCWoMIOVaUSC++15+YkDeO:dpyWxr+tePYIWVoCf5+Yk/

Score
7/10
pyinstallerspywarestealer

Malware Config

Targets

    • Target

      PixelPlaceTR.exe

    • Size

      101.0MB

    • MD5

      da46016006c4040fcbb3fff2531ee187

    • SHA1

      53e0a8199d0bc484736412cd45a0b7e0536fa00a

    • SHA256

      45f13c3805148a32cfacc6ab4a4d97df519f9f9a6eb4d91dca93629068241bc9

    • SHA512

      c3f9b6cfdeb756653f14f42eeec5d80eb8db1aa5e30a47c0ef62947a81537c66eec649e71538da3381b8df760c588886dad3cb2671f0e16fbc1e8b69e1524a7a

    • SSDEEP

      3145728:dI2y4dgYRgWYDtBQgwothCWoMIOVaUSC++15+YkDeO:dpyWxr+tePYIWVoCf5+Yk/

    Score
    7/10
    spywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v6

Tasks