Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

20/07/2024, 04:26

240720-e2t6zszcqf 7

20/07/2024, 04:24

240720-e1s8aswdml 7

General

  • Target

    skeet_cracked.exe

  • Size

    10.2MB

  • Sample

    240720-e1s8aswdml

  • MD5

    275b3daab28a48554aa8b237180e7683

  • SHA1

    ac565b427bc52c508310bf6f72a793c8679cde4a

  • SHA256

    afaa2393aa66bdf295df7abcdc9ec2335e1b77b33a23763db57af19bac37cbdd

  • SHA512

    988b16a5c43d56b8528b9980befa375b4fe952542924bcf2533a36d02fad02e92b88bd8882192ac975b8c8b75f578d33dfe38165e8bb282eacb2cc2c1743aca3

  • SSDEEP

    196608:z/xEkYcowuLIoBA1HeT39Iigwh1ncKOVVtc97XEtQ1NjOp4U:1EkYcXIq1+TtIiFv0VQx060l

Malware Config

Targets

    • Target

      skeet_cracked.exe

    • Size

      10.2MB

    • MD5

      275b3daab28a48554aa8b237180e7683

    • SHA1

      ac565b427bc52c508310bf6f72a793c8679cde4a

    • SHA256

      afaa2393aa66bdf295df7abcdc9ec2335e1b77b33a23763db57af19bac37cbdd

    • SHA512

      988b16a5c43d56b8528b9980befa375b4fe952542924bcf2533a36d02fad02e92b88bd8882192ac975b8c8b75f578d33dfe38165e8bb282eacb2cc2c1743aca3

    • SSDEEP

      196608:z/xEkYcowuLIoBA1HeT39Iigwh1ncKOVVtc97XEtQ1NjOp4U:1EkYcXIq1+TtIiFv0VQx060l

    Score
    7/10
    • Drops startup file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks