Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6438567234bcaa4a6ac17fa79f337201
-
Size
250KB
-
Sample
231226-lkcc6shdem
-
MD5
6438567234bcaa4a6ac17fa79f337201
-
SHA1
c175c29b17fc3f4d8733b8b5a15bb9e0ec71841e
-
SHA256
29c60115bdaa40a9122ded417894ba9ce556dd7a6a2fd74bf6a10fe2027b4bc7
-
SHA512
af9808da567d0a74504ff48f61c46703134dba03b485e0ea2e43dea04e0bb00c956fff042973853161668cb6e64a710fd812ad8295a698bed01f22d3145ebca1
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5yKfox1A3yFjaxluR4:h1OgLdaO5oXA3Isu6
Malware Config
Targets
-
-
Target
6438567234bcaa4a6ac17fa79f337201
-
Size
250KB
-
MD5
6438567234bcaa4a6ac17fa79f337201
-
SHA1
c175c29b17fc3f4d8733b8b5a15bb9e0ec71841e
-
SHA256
29c60115bdaa40a9122ded417894ba9ce556dd7a6a2fd74bf6a10fe2027b4bc7
-
SHA512
af9808da567d0a74504ff48f61c46703134dba03b485e0ea2e43dea04e0bb00c956fff042973853161668cb6e64a710fd812ad8295a698bed01f22d3145ebca1
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5yKfox1A3yFjaxluR4:h1OgLdaO5oXA3Isu6
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-