Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7f22f1655c7717f742d7a13162ba490ffcbc8a60f91d18b8d72df198905e9c5d

  • Size

    122KB

  • Sample

    240715-ph79lstamd

  • MD5

    5774cdda3b2ad3d0aa927c0b53678825

  • SHA1

    bbf66d74b17e25f1bd44f401a85fa12851b1c63c

  • SHA256

    7f22f1655c7717f742d7a13162ba490ffcbc8a60f91d18b8d72df198905e9c5d

  • SHA512

    a10c1887fe8dd36b028c39ec94ee8ed369462f19b99e3a44f9eb3c4d12ecdcb4f51de19ab1fd3aad3a2e46d3b789ed65f2ed299db8a1df6c3d54232edc11c834

  • SSDEEP

    3072:Kuv3C7drqXk2dP0kDRMqYSHWoB7qL2JWDBKJ+:KuudrHYP0kDRMrSHWoBeD

Score
10/10

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      7f22f1655c7717f742d7a13162ba490ffcbc8a60f91d18b8d72df198905e9c5d

    • Size

      122KB

    • MD5

      5774cdda3b2ad3d0aa927c0b53678825

    • SHA1

      bbf66d74b17e25f1bd44f401a85fa12851b1c63c

    • SHA256

      7f22f1655c7717f742d7a13162ba490ffcbc8a60f91d18b8d72df198905e9c5d

    • SHA512

      a10c1887fe8dd36b028c39ec94ee8ed369462f19b99e3a44f9eb3c4d12ecdcb4f51de19ab1fd3aad3a2e46d3b789ed65f2ed299db8a1df6c3d54232edc11c834

    • SSDEEP

      3072:Kuv3C7drqXk2dP0kDRMqYSHWoB7qL2JWDBKJ+:KuudrHYP0kDRMrSHWoBeD

    Score
    10/10
    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

MITRE ATT&CK Matrix

Tasks