Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

entry001/2...pg.exe

windows7-x64

7

entry001/2...pg.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file_0e1543b44fc7470faa030e7d3c2fa2fc_2023-09-18_09_19_59_077000.zip

  • Size

    1021KB

  • Sample

    231012-ttrs8aba5w

  • MD5

    9b0aa4d86f870ec3647e000cb0816c61

  • SHA1

    4321dcf412f8f5fb6fdba034eae0f117f95353ce

  • SHA256

    05f45966adedf12871b14d5c1907160892a6b079d7010168303c77db788998c9

  • SHA512

    2a75d0b039294bd268fb4722a0d8b9e50a2f021afdbb08c8098ed63a10cb1c769df5381cf972f0291820df436cfdd36214277f13d2e4ba7c06178f8399540ee1

  • SSDEEP

    24576:tNFv+uQ+qtikPLKuyIj6VvEQ4bWAvA3eu2l6cO:zsuPq0kT5+VMJWAY3e9scO

Score
10/10
evasionpersistencespywarestealer

Malware Config

Targets

    • Target

      entry001/200220151240.jpg.exe

    • Size

      2.4MB

    • MD5

      9060edf6bf993434b2480476dda304f4

    • SHA1

      a74f79de70629d3782c6e70a7be0202b9b0876bd

    • SHA256

      b46e55a9d44bc36bcd0cd0a6cf51b42e3093f358fedd63d905d18bd2cb5d21b0

    • SHA512

      1f6082d893db4f12d7af5de74d1725b4431dcc57947f55cae7186e38cb7da1e620e7407fc512778d648e86c7b251a8ed97030f7940a54e527539a45a5ab47303

    • SSDEEP

      24576:b8h4aPlfTUYDrQOfseBC1+ZnoBzEgY5cfPtQE3WV9UKkjhmKiKSqSWLaPgIze7my:b1U9T8ZDYWntr3WVajW4I3VGihb7

    Score
    10/10
    persistencespywarestealerevasion

    • Modifies firewall policy service

      evasion

    • Drops file in Drivers directory

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks