Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

rockstar/setup.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    generator rockstar.zip

  • Size

    16.0MB

  • Sample

    240428-1y43nsac46

  • MD5

    a34403f06544fc86d2020c5f27699409

  • SHA1

    3ff85446e41c03bbec5751c6f0942736e4aa876a

  • SHA256

    3240d894262d6a1b7624964c93baf7a49ff1593be6e958440f7136b816f2a35d

  • SHA512

    14a4b1f474ecdb911ec71dcf5e07890bbaa6b3b182c5b5ea627d7cfe2fdbe75dda1a30c59b3b49e09a7a28564bc205c5edbf69f38511b75f9cde3514a0b4dc51

  • SSDEEP

    393216:qnKfoGTurEEhwDrrYYWzOgoRWZp0+EolcOpIGotC:dfXZEheXfmpXJpvotC

Score
7/10
pyinstallerspywarestealerupx

Malware Config

Targets

    • Target

      rockstar/setup.bat

    • Size

      16.1MB

    • MD5

      67405fdaad0493d37d7c28801bfb3557

    • SHA1

      1c5f0f24847b9f0389ec5c140aab3fc77cdbcde5

    • SHA256

      8adf9cf6aaf5aa7f6aa0efa32a7ea6215df2f329bc0001b649b6842c40d1bb75

    • SHA512

      5da119662d8232fc5dd94479456722fee455d6cda9a93ee53a7367a096981dd5cbaa25d86667eb2a82bcf7a00e15872a8036defdc6d3b96701447157a5cc1d78

    • SSDEEP

      393216:Zv90+5gDkTh2Jp5MwurEUWjsrz7E5PKk9buK+x:V9PvThidb8z7bkEK+

    Score
    7/10
    spywarestealerupx

    • Drops startup file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks