08b97a6a4b5999bd0f0c2f0eb368eb938a16c373999b672db24ea89664d35714 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

WebTorrent....0.exe

windows7-x64

7

WebTorrent....0.exe

windows10-2004-x64

7

Sharing

General

Target

WebTorrentSetup-v0.24.0.exe
Size

81.8MB
Sample

230512-sye5jsdf54
MD5

e3921e5c2119b846307a791b7e72add2
SHA1

bff9ecd3a1cffcc0565958cdff1ce64acf025387
SHA256

08b97a6a4b5999bd0f0c2f0eb368eb938a16c373999b672db24ea89664d35714
SHA512

a0c49d4b8789ed7d0332b067837cbd7e854e59376992b8c5400ad8e0784ba83645c7456df2890354bb3bd714b0637fe15d060bd203a35bea127fb4e01f7c49b1
SSDEEP

1572864:Lgn5zqiy1C/y49mULaZ+4tpFiJixKnSJEmVA1rKZufzpyZttgpUVT:LgtyYy4kUOltiJVmVAFKZEzpyvYUVT

Score

7^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

WebTorrentSetup-v0.24.0.exe

Resource

win7-20230220-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

WebTorrentSetup-v0.24.0.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  WebTorrentSetup-v0.24.0.exe
- Size
  
  81.8MB
- MD5
  
  e3921e5c2119b846307a791b7e72add2
- SHA1
  
  bff9ecd3a1cffcc0565958cdff1ce64acf025387
- SHA256
  
  08b97a6a4b5999bd0f0c2f0eb368eb938a16c373999b672db24ea89664d35714
- SHA512
  
  a0c49d4b8789ed7d0332b067837cbd7e854e59376992b8c5400ad8e0784ba83645c7456df2890354bb3bd714b0637fe15d060bd203a35bea127fb4e01f7c49b1
- SSDEEP
  
  1572864:Lgn5zqiy1C/y49mULaZ+4tpFiJixKnSJEmVA1rKZufzpyZttgpUVT:LgtyYy4kUOltiJVmVAFKZEzpyvYUVT
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy