Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

PDF152551386013601.js

windows7-x64

10

PDF152551386013601.js

windows10-1703-x64

10

PDF152551386013601.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PDF152551386013601.js

  • Size

    1.1MB

  • Sample

    230721-pgwt7aef39

  • MD5

    2401ec9ab6c8a2c5ebcfdd3542411ad6

  • SHA1

    5f7eb86500f85f53cc1647db6b8571cfc044a115

  • SHA256

    80c7906a7e228cb7612cb94ef9f25de02c8520a5c7ec983cc117fe5f75c11f1f

  • SHA512

    02a2f8eb4640b7f0b67d2689a37fc587c6f2489d0f6a01f80ba632a3f41264a64cc2d05aca6e399d89b6674083f543cb994385c67c8eca030d8748ef01728873

  • SSDEEP

    24576:AACtn8Kmt03FWjMjGsyZWuPFOLqCF/Hp2w8Qr/8Nhctk+gniMKlF7vc39gW:3N

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

91.215.85.209

Targets

    • Target

      PDF152551386013601.js

    • Size

      1.1MB

    • MD5

      2401ec9ab6c8a2c5ebcfdd3542411ad6

    • SHA1

      5f7eb86500f85f53cc1647db6b8571cfc044a115

    • SHA256

      80c7906a7e228cb7612cb94ef9f25de02c8520a5c7ec983cc117fe5f75c11f1f

    • SHA512

      02a2f8eb4640b7f0b67d2689a37fc587c6f2489d0f6a01f80ba632a3f41264a64cc2d05aca6e399d89b6674083f543cb994385c67c8eca030d8748ef01728873

    • SSDEEP

      24576:AACtn8Kmt03FWjMjGsyZWuPFOLqCF/Hp2w8Qr/8Nhctk+gniMKlF7vc39gW:3N

    Score
    10/10
    strelastealer

    • Strela

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks