Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

setup.exe

windows7-x64

7

setup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setup.exe

  • Size

    7.2MB

  • Sample

    231011-szfgpsga9y

  • MD5

    c582d0c4448b428dddb04a6a21f440ff

  • SHA1

    8ba225fe248601a8192c0e0a51bb78c15f825656

  • SHA256

    f6933b70a82f621c116566015c6e2ee758f276b40cdd45f09ac32ec4a23b0148

  • SHA512

    0ae54b79ef4e54f5314078710fa2189935c0334b6cd8383ed68541174ab45f5488c5a4d3be94fbbe30a8fc3b6481ea0e56de5956f0ac9e874c2596c92ad47378

  • SSDEEP

    196608:91OgbDOZgrtMg7Jl3gxorpnkmJkIJJlu+W2B2wISe:3OgHbrljQx2pkmW6J/za

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      setup.exe

    • Size

      7.2MB

    • MD5

      c582d0c4448b428dddb04a6a21f440ff

    • SHA1

      8ba225fe248601a8192c0e0a51bb78c15f825656

    • SHA256

      f6933b70a82f621c116566015c6e2ee758f276b40cdd45f09ac32ec4a23b0148

    • SHA512

      0ae54b79ef4e54f5314078710fa2189935c0334b6cd8383ed68541174ab45f5488c5a4d3be94fbbe30a8fc3b6481ea0e56de5956f0ac9e874c2596c92ad47378

    • SSDEEP

      196608:91OgbDOZgrtMg7Jl3gxorpnkmJkIJJlu+W2B2wISe:3OgHbrljQx2pkmW6J/za

    Score
    7/10
    spywarestealer

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks