Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

01/03/2023, 02:07

230301-ckheradg6t 7

01/03/2023, 02:01

230301-cftl8adg5t 7

01/03/2023, 01:59

230301-celvzseb46 7

01/03/2023, 01:56

230301-cc4b9adg4v 7

General

  • Target

    Oracle.exe

  • Size

    18.3MB

  • Sample

    230301-celvzseb46

  • MD5

    c36b7ee91e745671e55f4b49ce2d4492

  • SHA1

    9006d58e63fd703cea268731b42edbe1d090394e

  • SHA256

    c095c727ba44be2fd4d841a673651ef56743fbf72def1437edb4459b5910d249

  • SHA512

    bb98e6f4be3a89a237f3a078c3e5fd01e1edd21b85abcd681282f6b9b9adb9ddefe23ba244ce580eaafa1d51e7bd531d0709539f79df1275c9560f0f561aa3ff

  • SSDEEP

    393216:3u7L/qu29QDD5dQuslN/m3pDl9AJ4ZoWOv+9fPV4aD5GsNWLn5Q:3CLSDudQu4KRS4ZorvS3p5GSWD5Q

Malware Config

Targets

    • Target

      Oracle.exe

    • Size

      18.3MB

    • MD5

      c36b7ee91e745671e55f4b49ce2d4492

    • SHA1

      9006d58e63fd703cea268731b42edbe1d090394e

    • SHA256

      c095c727ba44be2fd4d841a673651ef56743fbf72def1437edb4459b5910d249

    • SHA512

      bb98e6f4be3a89a237f3a078c3e5fd01e1edd21b85abcd681282f6b9b9adb9ddefe23ba244ce580eaafa1d51e7bd531d0709539f79df1275c9560f0f561aa3ff

    • SSDEEP

      393216:3u7L/qu29QDD5dQuslN/m3pDl9AJ4ZoWOv+9fPV4aD5GsNWLn5Q:3CLSDudQu4KRS4ZorvS3p5GSWD5Q

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks