Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

530634a98e...97.exe

windows7-x64

8

530634a98e...97.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    530634a98e572358b7c7bf63094e4aaae8bca255e418853c2bb2dcef522d6997

  • Size

    56KB

  • Sample

    240505-spfpqagg68

  • MD5

    99d1201628cf81ef174b5148243c8866

  • SHA1

    87ba221ede4c83fd8bdcc2ac768fa57aae0a9fec

  • SHA256

    530634a98e572358b7c7bf63094e4aaae8bca255e418853c2bb2dcef522d6997

  • SHA512

    fa908d064b482e1de80cfd907303f7a524af83d8d081e1c5a28aec37a168922086303a4e0540b8abd16a249774a5fc436df5d7856200891f0e8b29ac7b0a25ce

  • SSDEEP

    1536:PqsaYzMXqtGNttyUn01Q78a4RJdeK+UfZ/XWrI:PqsaY46tGNttyJQ7KRJj+OZ/XW8

Score
8/10
spywarestealer

Malware Config

Targets

    • Target

      530634a98e572358b7c7bf63094e4aaae8bca255e418853c2bb2dcef522d6997

    • Size

      56KB

    • MD5

      99d1201628cf81ef174b5148243c8866

    • SHA1

      87ba221ede4c83fd8bdcc2ac768fa57aae0a9fec

    • SHA256

      530634a98e572358b7c7bf63094e4aaae8bca255e418853c2bb2dcef522d6997

    • SHA512

      fa908d064b482e1de80cfd907303f7a524af83d8d081e1c5a28aec37a168922086303a4e0540b8abd16a249774a5fc436df5d7856200891f0e8b29ac7b0a25ce

    • SSDEEP

      1536:PqsaYzMXqtGNttyUn01Q78a4RJdeK+UfZ/XWrI:PqsaY46tGNttyJQ7KRJj+OZ/XW8

    Score
    8/10
    spywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks