Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ee7b24cc0be20e605d042d3c2ddb56cb0bf9e10582649b5504ecf60276af7403

  • Size

    462KB

  • Sample

    240423-xpnsjsba57

  • MD5

    d0b5e3c428212e1dd3acd07c3392f0eb

  • SHA1

    9f2761d8fce5604d62fc09f8513eaf84f47f4155

  • SHA256

    ee7b24cc0be20e605d042d3c2ddb56cb0bf9e10582649b5504ecf60276af7403

  • SHA512

    0bcfcdb01273d3a53558913d600b03d18aa46c121c8ed77096d93d116dde3041a7e2cea69aabd3368d2a2f87598022f7a0a37b558b139a68a4cbf7480c1c779a

  • SSDEEP

    12288:sn6oPSHN9AVHibrbWXIRsReDhmrDira9vzLCI6:A6+U9WHiTNRRAhD6

Score
10/10

Malware Config

Targets

    • Target

      ee7b24cc0be20e605d042d3c2ddb56cb0bf9e10582649b5504ecf60276af7403

    • Size

      462KB

    • MD5

      d0b5e3c428212e1dd3acd07c3392f0eb

    • SHA1

      9f2761d8fce5604d62fc09f8513eaf84f47f4155

    • SHA256

      ee7b24cc0be20e605d042d3c2ddb56cb0bf9e10582649b5504ecf60276af7403

    • SHA512

      0bcfcdb01273d3a53558913d600b03d18aa46c121c8ed77096d93d116dde3041a7e2cea69aabd3368d2a2f87598022f7a0a37b558b139a68a4cbf7480c1c779a

    • SSDEEP

      12288:sn6oPSHN9AVHibrbWXIRsReDhmrDira9vzLCI6:A6+U9WHiTNRRAhD6

    Score
    10/10
    • Stealc

      Stealc is an infostealer written in C++.

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks