Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

d385358cdc...65.exe

windows7-x64

9

d385358cdc...65.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d385358cdcdc02a55682f4c3bbb9054784672c161f28ea7e7415b771dffa2265

  • Size

    27KB

  • Sample

    240521-e5j57ahf9s

  • MD5

    8a2229063faf7e0e7771817b21a8d605

  • SHA1

    0423780da80d35013f66c0c08af9d03bae7c6e94

  • SHA256

    d385358cdcdc02a55682f4c3bbb9054784672c161f28ea7e7415b771dffa2265

  • SHA512

    7db67aead1b32d759c75529984708d957b36c54d6c19107afbf39d1e18659f25c422931a08448cf431dcddfe5a6aff9f77ba6fd5dd15d65b1fcde3fe7f996e05

  • SSDEEP

    768:X9J/3FzjgfanEGx8V36unjv88tznuRU65Y4gpph1ePVCMy:N5VzcfA/6LrVpL74gfh16ny

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      d385358cdcdc02a55682f4c3bbb9054784672c161f28ea7e7415b771dffa2265

    • Size

      27KB

    • MD5

      8a2229063faf7e0e7771817b21a8d605

    • SHA1

      0423780da80d35013f66c0c08af9d03bae7c6e94

    • SHA256

      d385358cdcdc02a55682f4c3bbb9054784672c161f28ea7e7415b771dffa2265

    • SHA512

      7db67aead1b32d759c75529984708d957b36c54d6c19107afbf39d1e18659f25c422931a08448cf431dcddfe5a6aff9f77ba6fd5dd15d65b1fcde3fe7f996e05

    • SSDEEP

      768:X9J/3FzjgfanEGx8V36unjv88tznuRU65Y4gpph1ePVCMy:N5VzcfA/6LrVpL74gfh16ny

    Score
    9/10
    persistencespywarestealerupx

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks