Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab519667dcfb48e1effa8a794187ae38

  • Size

    150KB

  • Sample

    240228-h4xaxaea8v

  • MD5

    ab519667dcfb48e1effa8a794187ae38

  • SHA1

    ae73c96ac65af469bf9d22574a672e61edba11bc

  • SHA256

    496a82d41ef981aaf95528eba07b68a8bbfafa567f3a1bdb10d600c629442fb5

  • SHA512

    4d6b2bf78d29d89e625ee1bbe7789ad5ebc7de5bf373e8530fc7aa9f38f46127871a448a09a004a2ff7d04451122f05fb018906bef6aba67c3ed25a0d5e583d1

  • SSDEEP

    3072:OPLRxVU5Cn0IKbuFEI1ZCM1PqG9pT632FszuZMrBls9jCAypKke3ZuYsERohNSkz:BCn0IMul2N7ZeJuY9hfZC

Score
10/10

Malware Config

Extracted

Credentials

  • Protocol:
    smtp
  • Host:
    smtp.gmail.com
  • Port:
    587
  • Username:
    [email protected]
  • Password:
    keyloggerdeneme

Targets

    • Target

      ab519667dcfb48e1effa8a794187ae38

    • Size

      150KB

    • MD5

      ab519667dcfb48e1effa8a794187ae38

    • SHA1

      ae73c96ac65af469bf9d22574a672e61edba11bc

    • SHA256

      496a82d41ef981aaf95528eba07b68a8bbfafa567f3a1bdb10d600c629442fb5

    • SHA512

      4d6b2bf78d29d89e625ee1bbe7789ad5ebc7de5bf373e8530fc7aa9f38f46127871a448a09a004a2ff7d04451122f05fb018906bef6aba67c3ed25a0d5e583d1

    • SSDEEP

      3072:OPLRxVU5Cn0IKbuFEI1ZCM1PqG9pT632FszuZMrBls9jCAypKke3ZuYsERohNSkz:BCn0IMul2N7ZeJuY9hfZC

    Score
    10/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks