Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ac6dcd80cc...c5.exe

windows7-x64

3

ac6dcd80cc...c5.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac6dcd80ccb8e7d6d2dd70f59b66a5c5

  • Size

    94KB

  • Sample

    240228-vv19qahf48

  • MD5

    ac6dcd80ccb8e7d6d2dd70f59b66a5c5

  • SHA1

    f0881a55cab8efbd96c4b705bcff1153aa314385

  • SHA256

    75ef96eea7336cc5282edf804fda8d23fb7ba77d23cab9dd66fa0bdbb4cf7a49

  • SHA512

    26eea117933696cb67dc459ac52523943f489f6afe6c145366b96dd6b7285dfa1a6008318b69a1947af81d5e717711ccbb75823cf26c3451aa9ac0c77ac0adfc

  • SSDEEP

    1536:aUKgvmnXj8TXda3Is+44umPpZ3V0biEG0J3Xx3brcaTn/EmP3yc+k5:aJwX+b4xfV0GE1VtnczEFD

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      ac6dcd80ccb8e7d6d2dd70f59b66a5c5

    • Size

      94KB

    • MD5

      ac6dcd80ccb8e7d6d2dd70f59b66a5c5

    • SHA1

      f0881a55cab8efbd96c4b705bcff1153aa314385

    • SHA256

      75ef96eea7336cc5282edf804fda8d23fb7ba77d23cab9dd66fa0bdbb4cf7a49

    • SHA512

      26eea117933696cb67dc459ac52523943f489f6afe6c145366b96dd6b7285dfa1a6008318b69a1947af81d5e717711ccbb75823cf26c3451aa9ac0c77ac0adfc

    • SSDEEP

      1536:aUKgvmnXj8TXda3Is+44umPpZ3V0biEG0J3Xx3brcaTn/EmP3yc+k5:aJwX+b4xfV0GE1VtnczEFD

    Score
    7/10
    persistencespywarestealer

    • Deletes itself

    • Executes dropped EXE

    • Reads WinSCP keys stored on the system

      Tries to access WinSCP stored sessions.

      spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks