Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

25/02/2024, 10:14

240225-l9r5xsab3s 7

25/02/2024, 10:08

240225-l6argaaa6s 7

General

  • Target

    Shaderium1.4.0.rar

  • Size

    67.1MB

  • Sample

    240225-l9r5xsab3s

  • MD5

    3ac926cd05476cfdf19382f233296197

  • SHA1

    2a5b724ba95ac78d27048e46af90a5ba36e829c8

  • SHA256

    eac0f3d162b8aa13eb8095fb3c871f6a787bc287f7afb9eb49993a3396c2a31f

  • SHA512

    2ab0704fe34d7ebb38e54c16e89900c88fae07ea948a9f11a6f0fe7f0ce6bccd818da94dfba739073ecbae91a4a1c4085b536424953f8e8a73e188d5322c1eb2

  • SSDEEP

    1572864:LrziNx5qJRvEC8AA7qIsklM6uECzJRFnc35lkFcF7vz1PzL:Ox5qJRvtA7vM6HwJRFn8mqzL

Score
7/10

Malware Config

Targets

    • Target

      Shaderium1.4.0.rar

    • Size

      67.1MB

    • MD5

      3ac926cd05476cfdf19382f233296197

    • SHA1

      2a5b724ba95ac78d27048e46af90a5ba36e829c8

    • SHA256

      eac0f3d162b8aa13eb8095fb3c871f6a787bc287f7afb9eb49993a3396c2a31f

    • SHA512

      2ab0704fe34d7ebb38e54c16e89900c88fae07ea948a9f11a6f0fe7f0ce6bccd818da94dfba739073ecbae91a4a1c4085b536424953f8e8a73e188d5322c1eb2

    • SSDEEP

      1572864:LrziNx5qJRvEC8AA7qIsklM6uECzJRFnc35lkFcF7vz1PzL:Ox5qJRvtA7vM6HwJRFn8mqzL

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • An obfuscated cmd.exe command-line is typically used to evade detection.

MITRE ATT&CK Enterprise v15

Tasks