3a989ec907525ae8cb488002641bd24876c524141035430cb75562d08691f5c7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

file.exe

windows7-x64

6

file.exe

windows10-2004-x64

6

Sharing

General

Target

file.exe
Size

305KB
Sample

230415-xj7cpsgg21
MD5

cbae5ce2d5c73d03569811c99b7e60d4
SHA1

465651b979221d10253bd6c648ba2448aded1340
SHA256

3a989ec907525ae8cb488002641bd24876c524141035430cb75562d08691f5c7
SHA512

711bef6fc5cb81205618535c727500b4fc6cd475c49005ffa15533fcc6624f0d5dc79d1d1e6f1d1bd2c641e5fe9d271dcd427d6ea7a6c3ce55bff90e9885d543
SSDEEP

3072:oGZ9Ri9WNrWCGjnKT0yOYAMUyXu58lAaUiKUzsg8fBy+hxB+qT3E6H4kV5aupHoV:oGRi9WLJT0yO6y0KUYfp3x/DH5l9Nd

Score

6^/10

spyware

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20230220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  305KB
- MD5
  
  cbae5ce2d5c73d03569811c99b7e60d4
- SHA1
  
  465651b979221d10253bd6c648ba2448aded1340
- SHA256
  
  3a989ec907525ae8cb488002641bd24876c524141035430cb75562d08691f5c7
- SHA512
  
  711bef6fc5cb81205618535c727500b4fc6cd475c49005ffa15533fcc6624f0d5dc79d1d1e6f1d1bd2c641e5fe9d271dcd427d6ea7a6c3ce55bff90e9885d543
- SSDEEP
  
  3072:oGZ9Ri9WNrWCGjnKT0yOYAMUyXu58lAaUiKUzsg8fBy+hxB+qT3E6H4kV5aupHoV:oGRi9WLJT0yO6y0KUYfp3x/DH5l9Nd
Score

6^/10

spyware
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.