Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

6e733e40eb...f3.exe

windows7-x64

7

6e733e40eb...f3.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e733e40eb840af9f13d09395e4985f3

  • Size

    1.2MB

  • Sample

    231226-pmv5vacda2

  • MD5

    6e733e40eb840af9f13d09395e4985f3

  • SHA1

    7595ea346535ca77ca954923426e9b6c344c495f

  • SHA256

    9152487eb3e160e6f8d97b1489189f479d845b044018ccf92479021ab70656c4

  • SHA512

    474187364de53a27182f6668184d3f80fa1e654d54f5b505129a388d761541ffd5bc2aa929b21a99d7bb19692a3a0071f061d32856c5eeee8fecbf13ff0cfda1

  • SSDEEP

    24576:GIx5Kx34IQb8xlusz8HUCa2+9eu1e4B4KuOYrbRL+wdyQH:GCYF4IQwxhzeUCaF9PTjuZrbvyQH

Score
7/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      6e733e40eb840af9f13d09395e4985f3

    • Size

      1.2MB

    • MD5

      6e733e40eb840af9f13d09395e4985f3

    • SHA1

      7595ea346535ca77ca954923426e9b6c344c495f

    • SHA256

      9152487eb3e160e6f8d97b1489189f479d845b044018ccf92479021ab70656c4

    • SHA512

      474187364de53a27182f6668184d3f80fa1e654d54f5b505129a388d761541ffd5bc2aa929b21a99d7bb19692a3a0071f061d32856c5eeee8fecbf13ff0cfda1

    • SSDEEP

      24576:GIx5Kx34IQb8xlusz8HUCa2+9eu1e4B4KuOYrbRL+wdyQH:GCYF4IQwxhzeUCaF9PTjuZrbvyQH

    Score
    7/10
    adwarepersistencestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks