Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

a3c1b30df0...f3.exe

windows7-x64

7

a3c1b30df0...f3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a3c1b30df000e275363eda23ff50c6b680624a8ba2c8fa3b81d5c866c847b2f3

  • Size

    3.2MB

  • Sample

    240612-he4npatakb

  • MD5

    f50b46099b57064cce4e73143c9a06c6

  • SHA1

    2c8f6ac18e692b784be6c15ff966c564b6a6f622

  • SHA256

    a3c1b30df000e275363eda23ff50c6b680624a8ba2c8fa3b81d5c866c847b2f3

  • SHA512

    0542c161e09f69c47974f7a3f28a11bba2ec1c2f7ccd0d9a4a8cb7351ffd4280a797e97874832873d9fa571a2034bcc0dbfd9b97ac730538b0854396de843590

  • SSDEEP

    98304:O5iQ1Er5mkLLQ/ac5Bd0dvmcOmiurHZ9MfvkTRwJD:OqvLQP5BdihDv

Score
8/10
spywarestealerupx

Malware Config

Targets

    • Target

      a3c1b30df000e275363eda23ff50c6b680624a8ba2c8fa3b81d5c866c847b2f3

    • Size

      3.2MB

    • MD5

      f50b46099b57064cce4e73143c9a06c6

    • SHA1

      2c8f6ac18e692b784be6c15ff966c564b6a6f622

    • SHA256

      a3c1b30df000e275363eda23ff50c6b680624a8ba2c8fa3b81d5c866c847b2f3

    • SHA512

      0542c161e09f69c47974f7a3f28a11bba2ec1c2f7ccd0d9a4a8cb7351ffd4280a797e97874832873d9fa571a2034bcc0dbfd9b97ac730538b0854396de843590

    • SSDEEP

      98304:O5iQ1Er5mkLLQ/ac5Bd0dvmcOmiurHZ9MfvkTRwJD:OqvLQP5BdihDv

    Score
    8/10
    spywarestealerupx

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks