Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

muestra.txt

windows7-x64

8

muestra.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    muestra.txt

  • Size

    1.5MB

  • Sample

    230509-18hx7aec72

  • MD5

    9188e0af38883f23df89ea2cbc64e6eb

  • SHA1

    f4ff29d7d99f81eae2676091a8f6cdf37116476d

  • SHA256

    1f985f1f9f3208c1d08509fabd9aefad93dea9e47026e6d289667d9c3d931656

  • SHA512

    88901a05c2bb67e20e8a3a7bae3fc6f7668cc479fff1205e9a0f4781161af6013007dab62e3d114cc2145f3e5ba71fbbe655c27d4e6177a8529d3d70969e2fab

  • SSDEEP

    24576:sBShIymxlhKpQSpyVa2NYMJXTXVnyjBc/CZQYr8hiFaVmlAbKkMK+2lhL:ed/NYM87CtRV

Score
8/10
collectionpersistencespywarestealer

Malware Config

Targets

    • Target

      muestra.txt

    • Size

      1.5MB

    • MD5

      9188e0af38883f23df89ea2cbc64e6eb

    • SHA1

      f4ff29d7d99f81eae2676091a8f6cdf37116476d

    • SHA256

      1f985f1f9f3208c1d08509fabd9aefad93dea9e47026e6d289667d9c3d931656

    • SHA512

      88901a05c2bb67e20e8a3a7bae3fc6f7668cc479fff1205e9a0f4781161af6013007dab62e3d114cc2145f3e5ba71fbbe655c27d4e6177a8529d3d70969e2fab

    • SSDEEP

      24576:sBShIymxlhKpQSpyVa2NYMJXTXVnyjBc/CZQYr8hiFaVmlAbKkMK+2lhL:ed/NYM87CtRV

    Score
    8/10
    collectionpersistencespywarestealer

    • Downloads MZ/PE file

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses Microsoft Outlook profiles

      collection

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks