Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bb9cdaca5d99942a4d6b6531afa9cf9a87b4df1582b49bcc9c50513c44ac8928

  • Size

    126KB

  • Sample

    240715-pfrh3sseke

  • MD5

    46c0c4d51731e79484f75b9d7de420c7

  • SHA1

    a33c2be0d7ef6761894cf8faf74911d4ec5fe9f9

  • SHA256

    bb9cdaca5d99942a4d6b6531afa9cf9a87b4df1582b49bcc9c50513c44ac8928

  • SHA512

    c72f22b51dcc6e6febf67a959289a034c5a101da7ae7d5bd867ad52d1fc6b36267dc40f37ae00daf507cbf1179db752a7410441d8808879cb4425594c720dd97

  • SSDEEP

    3072:Alhj22o77sGnNuc87raRvmLXQNv69KAhz+:AS2S7RNYLWv6Kd

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      bb9cdaca5d99942a4d6b6531afa9cf9a87b4df1582b49bcc9c50513c44ac8928

    • Size

      126KB

    • MD5

      46c0c4d51731e79484f75b9d7de420c7

    • SHA1

      a33c2be0d7ef6761894cf8faf74911d4ec5fe9f9

    • SHA256

      bb9cdaca5d99942a4d6b6531afa9cf9a87b4df1582b49bcc9c50513c44ac8928

    • SHA512

      c72f22b51dcc6e6febf67a959289a034c5a101da7ae7d5bd867ad52d1fc6b36267dc40f37ae00daf507cbf1179db752a7410441d8808879cb4425594c720dd97

    • SSDEEP

      3072:Alhj22o77sGnNuc87raRvmLXQNv69KAhz+:AS2S7RNYLWv6Kd

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks