ab890c57b968f84c4190759c862f6afc03e276473cb8309cdb3595d9b11c2b16 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

Discord-IP-Grabber

windows11-21h2-x64

6

Sharing

General

Target

Discord-IP-Grabber
Size

245KB
Sample

240410-zyb68abe35
MD5

1e09b0d65a6c0bcfd1d19cbf771f85f4
SHA1

c1ed8401fffbb5a8158d32cbd1c7e6473d82357d
SHA256

ab890c57b968f84c4190759c862f6afc03e276473cb8309cdb3595d9b11c2b16
SHA512

1f243f2282dba4ab2e5c8abbdc4fb0935f1aa81a49dcbc570949b3ff19d7cefa4baaa099291203a5ac7171b8c4d093968f95a1e312d1dff9619338025dd47a67
SSDEEP

6144:2DuqJsf6pVSgE29xxspm0n1vuz3r9zvZJT3CqbMrhryfQNRPaCieMjAkvCJv1ViX:7f6pVSgE29xxspm0n1vuz3r9zvZJT3CE

Score

6^/10

Static task

static1

Behavioral task

behavioral1

Sample

Discord-IP-Grabber

Resource

win11-20240221-en

windows11-21h2-x64

9 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Discord-IP-Grabber
- Size
  
  245KB
- MD5
  
  1e09b0d65a6c0bcfd1d19cbf771f85f4
- SHA1
  
  c1ed8401fffbb5a8158d32cbd1c7e6473d82357d
- SHA256
  
  ab890c57b968f84c4190759c862f6afc03e276473cb8309cdb3595d9b11c2b16
- SHA512
  
  1f243f2282dba4ab2e5c8abbdc4fb0935f1aa81a49dcbc570949b3ff19d7cefa4baaa099291203a5ac7171b8c4d093968f95a1e312d1dff9619338025dd47a67
- SSDEEP
  
  6144:2DuqJsf6pVSgE29xxspm0n1vuz3r9zvZJT3CqbMrhryfQNRPaCieMjAkvCJv1ViX:7f6pVSgE29xxspm0n1vuz3r9zvZJT3CE
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy