eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Phemedrone...er.exe

windows10-2004-x64

7

Sharing

General

Target

Phemedrone-Stealer.exe
Size

81KB
Sample

230707-fkz7cafc42
MD5

3e2f888ce2078969c81b1e49026115f1
SHA1

4c877004934f4912502ff9862a962d6ec92ab011
SHA256

eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f
SHA512

da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90
SSDEEP

1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Phemedrone-Stealer.exe

Resource

win10v2004-20230703-en

spyware stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  Phemedrone-Stealer.exe
- Size
  
  81KB
- MD5
  
  3e2f888ce2078969c81b1e49026115f1
- SHA1
  
  4c877004934f4912502ff9862a962d6ec92ab011
- SHA256
  
  eb1c2284db5dd717f9ab690f2080ce880f83506f792b79c22ae452d6edc4587f
- SHA512
  
  da1f57f2c167affe0ae023bf3a875ed64501e26dc75270c2a7821713c3dc2ff677f581b035e5b9c2a63011ed90c4757be3621bf75de787ec0a021f806f972b90
- SSDEEP
  
  1536:w8KpkpcGtNWaaCQZB1rniGbJeadDTJHjwtNGMlCn5p2gnhQqJSwEKb/:w8KWGGtqCeiGbJeadDTZjwtNVlq54gnd
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy