Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cheats.exe

  • Size

    17.7MB

  • Sample

    231212-xmv4vaabhm

  • MD5

    6a59616459be7f04581c9d3dde8f546a

  • SHA1

    d8f3d07d609a3e12325e3b67719c255fa19f2ed2

  • SHA256

    8212b4fbb003c334820c3ba836aec608dc7bdb8b595469c1abb18b7dc4ff1f70

  • SHA512

    851731d1caf40bca5b994cfd8946ce25f03a5c322ae2c4bdddf126c7b7acd2e0502c00450bc8954393236da6b92696e791b4e894ba84a310111e1320d15da8cc

  • SSDEEP

    393216:9qPnLFXlrVgQpDOETgsvfGzMgwHKvEMjkQ2Leq:EPLFXN6QoEJBDvQUn

Malware Config

Targets

    • Target

      cheats.exe

    • Size

      17.7MB

    • MD5

      6a59616459be7f04581c9d3dde8f546a

    • SHA1

      d8f3d07d609a3e12325e3b67719c255fa19f2ed2

    • SHA256

      8212b4fbb003c334820c3ba836aec608dc7bdb8b595469c1abb18b7dc4ff1f70

    • SHA512

      851731d1caf40bca5b994cfd8946ce25f03a5c322ae2c4bdddf126c7b7acd2e0502c00450bc8954393236da6b92696e791b4e894ba84a310111e1320d15da8cc

    • SSDEEP

      393216:9qPnLFXlrVgQpDOETgsvfGzMgwHKvEMjkQ2Leq:EPLFXN6QoEJBDvQUn

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks