Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

accs.exe

windows7-x64

7

accs.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    accs.exe

  • Size

    16.6MB

  • Sample

    231202-wpwbysee9s

  • MD5

    08d90062f81fc0ffba72b3637de3067a

  • SHA1

    47a6311c738b1fd435be369520e0dae04a9c1a6d

  • SHA256

    14df56bdc8062b969eaaa23e83a66b80e8ad9544ef52e3502c2d9bf2c39d9a22

  • SHA512

    a8d71afa105f0eed1d52d18471c8709da34ab1e918e45af61d5c7ba0cc3a7f857855b9ea249fb14d5ed9942fe44b0321ac027fa9fc631d7196a9de8d79df38a3

  • SSDEEP

    393216:Zu7L/TKmr2pu0tTtdQusl7Q+l9RoWOv+9fayXDSY6:ZCL7Kmr2puI5dQu2QGborvSi

Score
10/10
crealstealerpyinstallerspywarestealer

Malware Config

Targets

    • Target

      accs.exe

    • Size

      16.6MB

    • MD5

      08d90062f81fc0ffba72b3637de3067a

    • SHA1

      47a6311c738b1fd435be369520e0dae04a9c1a6d

    • SHA256

      14df56bdc8062b969eaaa23e83a66b80e8ad9544ef52e3502c2d9bf2c39d9a22

    • SHA512

      a8d71afa105f0eed1d52d18471c8709da34ab1e918e45af61d5c7ba0cc3a7f857855b9ea249fb14d5ed9942fe44b0321ac027fa9fc631d7196a9de8d79df38a3

    • SSDEEP

      393216:Zu7L/TKmr2pu0tTtdQusl7Q+l9RoWOv+9fayXDSY6:ZCL7Kmr2puI5dQu2QGborvSi

    Score
    7/10
    spywarestealer

    • Drops startup file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks