Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

95d40f5e75...57.exe

windows7-x64

7

95d40f5e75...57.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857

  • Size

    264KB

  • Sample

    240709-k91xdsygnf

  • MD5

    5dc6df8fcb77a829557c591d8f0711f7

  • SHA1

    cb6d58da5284de15e536217540c6e4b96b4c38b0

  • SHA256

    95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857

  • SHA512

    8b890e1f9f0a84ad1d195100286538fe8ba586cfe9fa305b1fb9cee12d7cd3c05dcc8082f8b3afb4d628fd211e8650dbc3106a5be78dbe390337c63b20a6ea76

  • SSDEEP

    3072:eXfZQioJK+LRkgUA1nQZwFGVO4Mqg+WDY:sALRp1nQ4QLd

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857

    • Size

      264KB

    • MD5

      5dc6df8fcb77a829557c591d8f0711f7

    • SHA1

      cb6d58da5284de15e536217540c6e4b96b4c38b0

    • SHA256

      95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857

    • SHA512

      8b890e1f9f0a84ad1d195100286538fe8ba586cfe9fa305b1fb9cee12d7cd3c05dcc8082f8b3afb4d628fd211e8650dbc3106a5be78dbe390337c63b20a6ea76

    • SSDEEP

      3072:eXfZQioJK+LRkgUA1nQZwFGVO4Mqg+WDY:sALRp1nQ4QLd

    Score
    7/10
    spywarestealer

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks