Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

Grabber In...dn.exe

windows7-x64

1

Grabber In...dn.exe

windows10-2004-x64

8

Grabber In...on.dll

windows7-x64

1

Grabber In...on.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    odn.rar

  • Size

    939KB

  • Sample

    230518-nd7xlshe6w

  • MD5

    e846088ffd7670b902027d9027a16e35

  • SHA1

    e46030046ffb2a2c284ce36c63aaf9d885e33010

  • SHA256

    6fe0a79c781453e09961e6d7a761a252a39d75d1b8527b3ec38017037da62484

  • SHA512

    0de6576084e565fccfe0086d31cea548e55d0d5d0503605db21be6e8d93e251e9496ed2d8f861d80413a8052791a585c8dc528cbf163aba3d7facf04a9aa4988

  • SSDEEP

    24576:G7STTe9bA6N204LtrxFfrf6O5TWtTV8BKppYXFj3v6E:Gv/N2HJrzrSO5TOVWKjcd6E

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      Grabber Instagram By odn/Grabber Instagram By odn.exe

    • Size

      444KB

    • MD5

      193a4a308de89bb53eaadeffc3d87d58

    • SHA1

      470f062eb03a2c759f840db347be959bd88c1152

    • SHA256

      25da1b69f418cb0867e92dfb644c77b5a37e0b4159ef4818f5b85f89c3dc9b2b

    • SHA512

      f1ebeebba493490a89c5565262902b8636715c4421e106720eb10b3fb73996bf535a964c28002e17322bd401fdc2c5f9b2fffe76708d6256b52f3bfa0825e901

    • SSDEEP

      12288:NHgMBvziw8DzqI4ZjrG2cFJ1Jh4uJZz42qb:NjFNozqIeHGjVJh4uP41

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

    • Target

      Grabber Instagram By odn/Newtonsoft.Json.dll

    • Size

      685KB

    • MD5

      081d9558bbb7adce142da153b2d5577a

    • SHA1

      7d0ad03fbda1c24f883116b940717e596073ae96

    • SHA256

      b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3

    • SHA512

      2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511

    • SSDEEP

      12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks