Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

cf4f4161be...d0.exe

windows7-x64

7

cf4f4161be...d0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf4f4161be28828b23c1ba40e19380f2abe155bed3adebba1a095f93eb949fd0

  • Size

    25KB

  • Sample

    231012-jb2wcsgb83

  • MD5

    03db266f29e494b03849d8a40a61ef32

  • SHA1

    e055c6e631425b2efc6dc8363ffd864c651424da

  • SHA256

    cf4f4161be28828b23c1ba40e19380f2abe155bed3adebba1a095f93eb949fd0

  • SHA512

    4b1c77b13fe67d91c1ed33fcaeedb1f207e6006d6f7934988c0f115566aa1122dc787e7a4cda1a04ba21308678c2c3d8d66d8215775b0b41b5aa6bc10d08ff2d

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvr:8Q3LotOPNSQVwVVxGKEvKHrVr

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      cf4f4161be28828b23c1ba40e19380f2abe155bed3adebba1a095f93eb949fd0

    • Size

      25KB

    • MD5

      03db266f29e494b03849d8a40a61ef32

    • SHA1

      e055c6e631425b2efc6dc8363ffd864c651424da

    • SHA256

      cf4f4161be28828b23c1ba40e19380f2abe155bed3adebba1a095f93eb949fd0

    • SHA512

      4b1c77b13fe67d91c1ed33fcaeedb1f207e6006d6f7934988c0f115566aa1122dc787e7a4cda1a04ba21308678c2c3d8d66d8215775b0b41b5aa6bc10d08ff2d

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvr:8Q3LotOPNSQVwVVxGKEvKHrVr

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks