Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e4027dd767352e0bcc172a7a23dec8d16864d8e779bb035b1b655c111186c6b3

  • Size

    125KB

  • Sample

    240715-pcbcpaydkq

  • MD5

    d9233acb8af64c51a6ce5276c518acbb

  • SHA1

    78b79a16ae113191c8d137faf3ff9c05f86ca1fe

  • SHA256

    e4027dd767352e0bcc172a7a23dec8d16864d8e779bb035b1b655c111186c6b3

  • SHA512

    c767b01039bb5d0f231faacafd43740726ad60d8c9414523449a6a13f1351bc646a20296a0212d7840e28eeb8e449455642613dac403c8236dd08556e9e091db

  • SSDEEP

    3072:/Phd8jJIhwF1enIuN7DlJB/epdJgqOWnrWYUspqx8G7sFq/:/JCWKFf4TB/eyqOqrWYGT7s

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      e4027dd767352e0bcc172a7a23dec8d16864d8e779bb035b1b655c111186c6b3

    • Size

      125KB

    • MD5

      d9233acb8af64c51a6ce5276c518acbb

    • SHA1

      78b79a16ae113191c8d137faf3ff9c05f86ca1fe

    • SHA256

      e4027dd767352e0bcc172a7a23dec8d16864d8e779bb035b1b655c111186c6b3

    • SHA512

      c767b01039bb5d0f231faacafd43740726ad60d8c9414523449a6a13f1351bc646a20296a0212d7840e28eeb8e449455642613dac403c8236dd08556e9e091db

    • SSDEEP

      3072:/Phd8jJIhwF1enIuN7DlJB/epdJgqOWnrWYUspqx8G7sFq/:/JCWKFf4TB/eyqOqrWYGT7s

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks