Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

b60b21674e...67.exe

windows7-x64

7

b60b21674e...67.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b60b21674eeee2add6bd34efab834267

  • Size

    3.6MB

  • Sample

    240306-arm8gaeh42

  • MD5

    b60b21674eeee2add6bd34efab834267

  • SHA1

    30c69ca4db3afde7fbb28d5dde0b4491a7737d83

  • SHA256

    a7343943efa8ecdba7d0afdfebd183db6ddc423595d1b9fd7b8f999444db1013

  • SHA512

    f21f4cbd06c2b8cdb6da3341f33a92bf85fe4e42b055e4f5300b6d62a24396112ff792f0dc51c9f65ff14ba6703cd721e08923c4b7a558620af3495b88a87f17

  • SSDEEP

    49152:znBV7uNRXNxvnBV7uNRXNxIHzrOO53RTqtiOwnNTBYqnstLet3Ly:r4R9xH4R9xArOO53tKqnstLE

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      b60b21674eeee2add6bd34efab834267

    • Size

      3.6MB

    • MD5

      b60b21674eeee2add6bd34efab834267

    • SHA1

      30c69ca4db3afde7fbb28d5dde0b4491a7737d83

    • SHA256

      a7343943efa8ecdba7d0afdfebd183db6ddc423595d1b9fd7b8f999444db1013

    • SHA512

      f21f4cbd06c2b8cdb6da3341f33a92bf85fe4e42b055e4f5300b6d62a24396112ff792f0dc51c9f65ff14ba6703cd721e08923c4b7a558620af3495b88a87f17

    • SSDEEP

      49152:znBV7uNRXNxvnBV7uNRXNxIHzrOO53RTqtiOwnNTBYqnstLet3Ly:r4R9xH4R9xArOO53tKqnstLE

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks