Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Atdz56x_.exe

  • Size

    12.3MB

  • Sample

    240721-nwad3azbkh

  • MD5

    3b0c401c92259543235c3107b5404ad8

  • SHA1

    abfbac5bbbbf48d602656c1ca9563ac6cd14ce80

  • SHA256

    55e65149970f909c5487df061dced47a508e4b3c1eee2c7329d44897829ce29e

  • SHA512

    e6b052912d03e37eddf8fec1bb9f917489f5718a4c9070d64e9619b12b4488a4c1cda6e79ccda76011c1f0376bb9acd564d5f4fd4bd02c450536bce46d74ced5

  • SSDEEP

    393216:H3u8Uol39JaOB0MDTQ9jmeWacXR7t7zb:YWNQA0MDTC7c9t7v

Malware Config

Targets

    • Target

      Atdz56x_.exe

    • Size

      12.3MB

    • MD5

      3b0c401c92259543235c3107b5404ad8

    • SHA1

      abfbac5bbbbf48d602656c1ca9563ac6cd14ce80

    • SHA256

      55e65149970f909c5487df061dced47a508e4b3c1eee2c7329d44897829ce29e

    • SHA512

      e6b052912d03e37eddf8fec1bb9f917489f5718a4c9070d64e9619b12b4488a4c1cda6e79ccda76011c1f0376bb9acd564d5f4fd4bd02c450536bce46d74ced5

    • SSDEEP

      393216:H3u8Uol39JaOB0MDTQ9jmeWacXR7t7zb:YWNQA0MDTC7c9t7v

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks