Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

65a6a7eb14...5a.exe

windows7-x64

8

65a6a7eb14...5a.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65a6a7eb140ac1c9ef0036af6880645a

  • Size

    288KB

  • Sample

    240118-wecrvsfah3

  • MD5

    65a6a7eb140ac1c9ef0036af6880645a

  • SHA1

    495a0a275b06b7db09b20adf32085d143143c590

  • SHA256

    20bfa115a8606b230d4e6a1fc7ca7fda8f623b0a783a0cfbfa09201a8ba63909

  • SHA512

    5595ddaafbb64f169a2af0b55ef96414b325505ae40c5aec169be0a8c2bfadf2e3dc594714f89829a8597de479cda1b746fb3784bc7f3632c75158e26a162795

  • SSDEEP

    6144:wejcki1BSRm6W2k5F0f2t6b+vClRHUcivtJOkRGP07ByaB22U9F/R:wejckifOm67oFZt6KqlKRvtJOkRGmwtJ

Score
8/10
evasionpersistencespywarestealer

Malware Config

Targets

    • Target

      65a6a7eb140ac1c9ef0036af6880645a

    • Size

      288KB

    • MD5

      65a6a7eb140ac1c9ef0036af6880645a

    • SHA1

      495a0a275b06b7db09b20adf32085d143143c590

    • SHA256

      20bfa115a8606b230d4e6a1fc7ca7fda8f623b0a783a0cfbfa09201a8ba63909

    • SHA512

      5595ddaafbb64f169a2af0b55ef96414b325505ae40c5aec169be0a8c2bfadf2e3dc594714f89829a8597de479cda1b746fb3784bc7f3632c75158e26a162795

    • SSDEEP

      6144:wejcki1BSRm6W2k5F0f2t6b+vClRHUcivtJOkRGP07ByaB22U9F/R:wejckifOm67oFZt6KqlKRvtJOkRGmwtJ

    Score
    8/10
    evasionpersistencespywarestealer

    • Disables taskbar notifications via registry modification

      evasion

    • Modifies Installed Components in the registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks