Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b2972ce932617f5d4de02389a7865dd0N.exe
-
Size
2.6MB
-
Sample
240727-lxhqqasdkr
-
MD5
b2972ce932617f5d4de02389a7865dd0
-
SHA1
06d0d34e44e8fa53c6ec9ca2bef5bf082a4c8fcd
-
SHA256
50dff465a2b9c4019d124fff7379f583a44783ae92ee7b4c9259171f35267ff2
-
SHA512
960d2cbce67fdc186d5313dc79e07f4770d0784699603d58a969adabdb1e88006ef055a98700056eb1d435ec5b3e863a557c2e149705db20d0abbc419b69bad5
-
SSDEEP
49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpLb
Static task
static1
Behavioral task
behavioral1
Sample
b2972ce932617f5d4de02389a7865dd0N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b2972ce932617f5d4de02389a7865dd0N.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
b2972ce932617f5d4de02389a7865dd0N.exe
-
Size
2.6MB
-
MD5
b2972ce932617f5d4de02389a7865dd0
-
SHA1
06d0d34e44e8fa53c6ec9ca2bef5bf082a4c8fcd
-
SHA256
50dff465a2b9c4019d124fff7379f583a44783ae92ee7b4c9259171f35267ff2
-
SHA512
960d2cbce67fdc186d5313dc79e07f4770d0784699603d58a969adabdb1e88006ef055a98700056eb1d435ec5b3e863a557c2e149705db20d0abbc419b69bad5
-
SSDEEP
49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpLb
-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-