Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

7c91553292...23.exe

windows7-x64

7

7c91553292...23.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c915532927d432e39840d4dffa415cdc7c391faec377c745596bf40175e2e23

  • Size

    2.8MB

  • Sample

    230922-hza7waed6w

  • MD5

    0ef8d94eb593fcf0a46d86f81abab33f

  • SHA1

    fd5a7232e055d2963b6e2e0f185acfe24177bdf5

  • SHA256

    7c915532927d432e39840d4dffa415cdc7c391faec377c745596bf40175e2e23

  • SHA512

    dd09bcc27d851002a4f3edb3daa7c1154567ae5d57657153637421ba18bd33d4986dfccc3a49c74e3a3c413bdfb0b068dd894615e6c9aa86ccade0bde6beb155

  • SSDEEP

    49152:r6AX9jq67rEm77oT4PQlTD2G3mGF4b6KzgLwz:ncYEm77oT4m2CfF4u6gLw

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      7c915532927d432e39840d4dffa415cdc7c391faec377c745596bf40175e2e23

    • Size

      2.8MB

    • MD5

      0ef8d94eb593fcf0a46d86f81abab33f

    • SHA1

      fd5a7232e055d2963b6e2e0f185acfe24177bdf5

    • SHA256

      7c915532927d432e39840d4dffa415cdc7c391faec377c745596bf40175e2e23

    • SHA512

      dd09bcc27d851002a4f3edb3daa7c1154567ae5d57657153637421ba18bd33d4986dfccc3a49c74e3a3c413bdfb0b068dd894615e6c9aa86ccade0bde6beb155

    • SSDEEP

      49152:r6AX9jq67rEm77oT4PQlTD2G3mGF4b6KzgLwz:ncYEm77oT4m2CfF4u6gLw

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks