5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

5ffb926e49...ec.exe

windows7-x64

7

5ffb926e49...ec.exe

windows10-2004-x64

4

Sharing

General

Target

5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec
Size

1.8MB
Sample

240129-qtcshsahe5
MD5

83830d630bb37e3edf3877b7572a1098
SHA1

55960cebe33108ad09481bb468515907ef64df76
SHA256

5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec
SHA512

2cc24ecc488f8edfb770b4eedccc39989a36312f2ba3e0bd068717f72bbe51dfdfa719f1fbece5d096a930df83e997075dc95d1f0821537f5d045ec26c473aaf
SSDEEP

49152:Cx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAa16FnRMIJlm:CvbjVkjjCAzJJ6FnRMILm

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec.exe

Resource

win7-20231129-en

spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec
- Size
  
  1.8MB
- MD5
  
  83830d630bb37e3edf3877b7572a1098
- SHA1
  
  55960cebe33108ad09481bb468515907ef64df76
- SHA256
  
  5ffb926e49b6c20868162bb8a244b36a9f62e49ee0785c47641f07e69ab76fec
- SHA512
  
  2cc24ecc488f8edfb770b4eedccc39989a36312f2ba3e0bd068717f72bbe51dfdfa719f1fbece5d096a930df83e997075dc95d1f0821537f5d045ec26c473aaf
- SSDEEP
  
  49152:Cx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAa16FnRMIJlm:CvbjVkjjCAzJJ6FnRMILm
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy