Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

NEAS.f9a7c...JC.exe

windows7-x64

7

NEAS.f9a7c...JC.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.f9a7cadb3e1749b73b1304d47ef88070_JC.exe

  • Size

    359KB

  • Sample

    231104-merfkshh86

  • MD5

    f9a7cadb3e1749b73b1304d47ef88070

  • SHA1

    10c4632ebb569100abe57450a021ecfe2019de64

  • SHA256

    66f18e5d7e077c1c819fba5bb448d235333b6e7ed29166a98ea0764c547d906c

  • SHA512

    f0c83c9edc7511b6d4b2f00ba7a5d3aef01ee98f6bfba036fcbc861aaa1aeb695789688d3ed7c7202d15330ba6d9f193d0492b9c35de7a6548f22d249a6a0ce9

  • SSDEEP

    6144:hZMaz/pUhrG7PEuXYEpHlN9kAGxsOSVkSqOGHhkeb6IFJ3S7bk9dAMXNhl7:hS0/paG7oCnpkS8qeb6XgUmNhV

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      NEAS.f9a7cadb3e1749b73b1304d47ef88070_JC.exe

    • Size

      359KB

    • MD5

      f9a7cadb3e1749b73b1304d47ef88070

    • SHA1

      10c4632ebb569100abe57450a021ecfe2019de64

    • SHA256

      66f18e5d7e077c1c819fba5bb448d235333b6e7ed29166a98ea0764c547d906c

    • SHA512

      f0c83c9edc7511b6d4b2f00ba7a5d3aef01ee98f6bfba036fcbc861aaa1aeb695789688d3ed7c7202d15330ba6d9f193d0492b9c35de7a6548f22d249a6a0ce9

    • SSDEEP

      6144:hZMaz/pUhrG7PEuXYEpHlN9kAGxsOSVkSqOGHhkeb6IFJ3S7bk9dAMXNhl7:hS0/paG7oCnpkS8qeb6XgUmNhV

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks