ea172bd015926ad8cc4376ae5b2aa590921c465983fd22a8ecd21f80d83f06fc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

One Piece ...me.exe

windows10-1703-x64

7

Sharing

General

Target

One Piece The Game.exe
Size

17.3MB
Sample

240616-ae8zeavbnl
MD5

9327b9673775ca9a39f7dc3c55f20aad
SHA1

d780c4f88c3ff7428ac7d5972444a870c353edad
SHA256

ea172bd015926ad8cc4376ae5b2aa590921c465983fd22a8ecd21f80d83f06fc
SHA512

289b293d2780c6db8344f96dbadbc9e56c73db2cf25d0751ce7ba060bf5e586d3901f190971f6ce21aeb3ba8b96c49061834d29625707c6e126361f522a0be7f
SSDEEP

393216:MyYtEkZgf84gP8AxYDX1+TtIiFGuvB5IjWqn6e+NPz1Xy2XUd+da:KtRb4bX71QtIZS3ILn6e+7yv+da

Score

7^/10

pyinstaller spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

One Piece The Game.exe

Resource

win10-20240404-en

spyware stealer

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  One Piece The Game.exe
- Size
  
  17.3MB
- MD5
  
  9327b9673775ca9a39f7dc3c55f20aad
- SHA1
  
  d780c4f88c3ff7428ac7d5972444a870c353edad
- SHA256
  
  ea172bd015926ad8cc4376ae5b2aa590921c465983fd22a8ecd21f80d83f06fc
- SHA512
  
  289b293d2780c6db8344f96dbadbc9e56c73db2cf25d0751ce7ba060bf5e586d3901f190971f6ce21aeb3ba8b96c49061834d29625707c6e126361f522a0be7f
- SSDEEP
  
  393216:MyYtEkZgf84gP8AxYDX1+TtIiFGuvB5IjWqn6e+NPz1Xy2XUd+da:KtRb4bX71QtIZS3ILn6e+7yv+da
Score

7^/10

spyware stealer
- Drops startup file
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Process Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy