ecc9abb182c2fc53a525a89052537b05e91afbce98b309816a3646ae69a9ea76 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

196c42c248...b0.exe

windows7-x64

7

196c42c248...b0.exe

windows10-2004-x64

7

Sharing

General

Target

196c42c2485302da1ba751686b971eb0
Size

548KB
Sample

231230-qb2nxsdhcr
MD5

196c42c2485302da1ba751686b971eb0
SHA1

b29002480a8f87779dafa80c96b24e0f9cc93315
SHA256

ecc9abb182c2fc53a525a89052537b05e91afbce98b309816a3646ae69a9ea76
SHA512

04235bba1737689db7ba806fbb5849f42eec45b37b9cb2be4deba5f30c48439840ad2124e637bc45f8a89f543cbbce3948d959df6fc77c8648e60364e0f97546
SSDEEP

12288:KoEyifbC9G4fBbvm/7ls/AeCcqC6YGUZrV+9RJnTFWTsnVS2IcMM6c:Lijt4fByKMcqKRZc3JxWTsnE2IcMM6c

Score

7^/10

spyware stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

196c42c2485302da1ba751686b971eb0.exe

Resource

win7-20231215-en

spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

196c42c2485302da1ba751686b971eb0.exe

Resource

win10v2004-20231215-en

spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  196c42c2485302da1ba751686b971eb0
- Size
  
  548KB
- MD5
  
  196c42c2485302da1ba751686b971eb0
- SHA1
  
  b29002480a8f87779dafa80c96b24e0f9cc93315
- SHA256
  
  ecc9abb182c2fc53a525a89052537b05e91afbce98b309816a3646ae69a9ea76
- SHA512
  
  04235bba1737689db7ba806fbb5849f42eec45b37b9cb2be4deba5f30c48439840ad2124e637bc45f8a89f543cbbce3948d959df6fc77c8648e60364e0f97546
- SSDEEP
  
  12288:KoEyifbC9G4fBbvm/7ls/AeCcqC6YGUZrV+9RJnTFWTsnVS2IcMM6c:Lijt4fByKMcqKRZc3JxWTsnE2IcMM6c
Score

7^/10

spyware stealer upx
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.