Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
51b10c2bc0b214ecdd7511918ce615d9.exe
-
Size
97KB
-
Sample
230304-abn5tsbd6t
-
MD5
51b10c2bc0b214ecdd7511918ce615d9
-
SHA1
5099c0a9a8f6aada2845ecc9350d282235e154e1
-
SHA256
2088c6ea8ac26f01d0fb39667f4772674eb8c6e627f5f61399b1e3d1f21d99ca
-
SHA512
71e70ec5f93141694326ab00723c92271d354a1fea3ed44d39deb3e54b4948bf293222deed7899a5e502fc9a9cca88d272f5671e074afd784551cd603d7ee5fb
-
SSDEEP
1536:jIJEmHg1ZqTrbRgkfmgYqT4hd1+F53T8DSyvOQdlkTvXkzbkUql/d8uqh9:uLA1YgkV1EaqOQdlLFql/d8uqh
Behavioral task
behavioral1
Sample
51b10c2bc0b214ecdd7511918ce615d9.exe
Resource
win7-20230220-en
Malware Config
Extracted
pony
http://g8.net46.net/panel/gate.php
Targets
-
-
Target
51b10c2bc0b214ecdd7511918ce615d9.exe
-
Size
97KB
-
MD5
51b10c2bc0b214ecdd7511918ce615d9
-
SHA1
5099c0a9a8f6aada2845ecc9350d282235e154e1
-
SHA256
2088c6ea8ac26f01d0fb39667f4772674eb8c6e627f5f61399b1e3d1f21d99ca
-
SHA512
71e70ec5f93141694326ab00723c92271d354a1fea3ed44d39deb3e54b4948bf293222deed7899a5e502fc9a9cca88d272f5671e074afd784551cd603d7ee5fb
-
SSDEEP
1536:jIJEmHg1ZqTrbRgkfmgYqT4hd1+F53T8DSyvOQdlkTvXkzbkUql/d8uqh9:uLA1YgkV1EaqOQdlLFql/d8uqh
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-