Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

08/10/2023, 14:50

231008-r7sxbsfe89 7

08/10/2023, 14:45

231008-r4rvvsdb9x 7

General

  • Target

    Cuville.exe

  • Size

    67.2MB

  • Sample

    231008-r7sxbsfe89

  • MD5

    3d2cf226adb8fcc6b235b11d518bb60b

  • SHA1

    788c3a9abebe1fbca25b5f23bc01ff0f52b609fb

  • SHA256

    3a107ff3822d7af29d41249ca2df4776a481b5f1bc8756e449896ff12e17105c

  • SHA512

    39a1b50f742402cc46a61853d1888588727a6eeddafa89634a9c4593d1c2efec677628eeaab8ca30caa05a9d88231e2fea27391cfd4afb79c2bfc8fb22b60749

  • SSDEEP

    1572864:4xF1s9gpdoqnR1fZOu/Yy/KAtkui9bTBBfnasCU:4xF1s+dbBIXyyAtviRy/U

Malware Config

Targets

    • Target

      Cuville.exe

    • Size

      67.2MB

    • MD5

      3d2cf226adb8fcc6b235b11d518bb60b

    • SHA1

      788c3a9abebe1fbca25b5f23bc01ff0f52b609fb

    • SHA256

      3a107ff3822d7af29d41249ca2df4776a481b5f1bc8756e449896ff12e17105c

    • SHA512

      39a1b50f742402cc46a61853d1888588727a6eeddafa89634a9c4593d1c2efec677628eeaab8ca30caa05a9d88231e2fea27391cfd4afb79c2bfc8fb22b60749

    • SSDEEP

      1572864:4xF1s9gpdoqnR1fZOu/Yy/KAtkui9bTBBfnasCU:4xF1s+dbBIXyyAtviRy/U

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks