Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6dc8c0e5d209195925a1265b10a0390b57d6a19d645208a71692131a19181718

  • Size

    1.1MB

  • Sample

    231028-zbswfsfb27

  • MD5

    4c824267aa77b0c6caa3a723554aa4d4

  • SHA1

    1b371a2f153881792934322bf2a76fd6dcc167ef

  • SHA256

    6dc8c0e5d209195925a1265b10a0390b57d6a19d645208a71692131a19181718

  • SHA512

    bf5a866f2945aee501cb7acfb3ddfda28e28792a64b063ced844e60b4fe6c439090b42027da2b873e5ba42b8bbf0264e3274339c75f8f70f347bdfbc52ba6a6e

  • SSDEEP

    24576:8eh4biccwWcz+9N+gigYb484ecjxJjpZ/1A9:8j4EmZNI

Malware Config

Extracted

Family

stealc

C2

http://tetromask.site

Attributes
  • url_path

    /b5c586aec2e1004c.php

rc4.plain

Targets

    • Target

      6dc8c0e5d209195925a1265b10a0390b57d6a19d645208a71692131a19181718

    • Size

      1.1MB

    • MD5

      4c824267aa77b0c6caa3a723554aa4d4

    • SHA1

      1b371a2f153881792934322bf2a76fd6dcc167ef

    • SHA256

      6dc8c0e5d209195925a1265b10a0390b57d6a19d645208a71692131a19181718

    • SHA512

      bf5a866f2945aee501cb7acfb3ddfda28e28792a64b063ced844e60b4fe6c439090b42027da2b873e5ba42b8bbf0264e3274339c75f8f70f347bdfbc52ba6a6e

    • SSDEEP

      24576:8eh4biccwWcz+9N+gigYb484ecjxJjpZ/1A9:8j4EmZNI

    • Stealc

      Stealc is an infostealer written in C++.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks