Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Phemedrone-Stealer.exe

  • Size

    81KB

  • Sample

    230707-fkz7cafc42

  • MD5

    3e2f888ce2078969c81b1e49026115f1

  • SHA1

    4c877004934f4912502ff9862a962d6ec92ab011

  • SHA256

    eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f

  • SHA512

    da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90

  • SSDEEP

    1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd

Score
7/10

Malware Config

Targets

    • Target

      Phemedrone-Stealer.exe

    • Size

      81KB

    • MD5

      3e2f888ce2078969c81b1e49026115f1

    • SHA1

      4c877004934f4912502ff9862a962d6ec92ab011

    • SHA256

      eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f

    • SHA512

      da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90

    • SSDEEP

      1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks