Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

4b57b59d8b...0N.exe

windows7-x64

7

4b57b59d8b...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4b57b59d8bf8c07140174a2a5a9acb10N.exe

  • Size

    624KB

  • Sample

    240802-d4x5zstepq

  • MD5

    4b57b59d8bf8c07140174a2a5a9acb10

  • SHA1

    5c9ed70c715999fb7056a2e135b2abab96b7059c

  • SHA256

    d493533fc222a5e6ab2fd8d17dd5099213090bf307647e8d50c9cfe51f9f3584

  • SHA512

    4c76f86bd979697d6b9c0c69dd79421ddb382b6f52d9b476d3e79d5bea904fb30890639ffe9b355175db22f4b70afc4e88d735d9c51827e0c8693c8666c6b2eb

  • SSDEEP

    12288:dXCNi9Bi6CyTvvl2ywehL8Y/6Wq1+e1aJa3e/I2eIrYJT0I6za+XLdi5C:oWi/yz8ywehL8Y/6V/aJa3e/LeAYJT0n

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      4b57b59d8bf8c07140174a2a5a9acb10N.exe

    • Size

      624KB

    • MD5

      4b57b59d8bf8c07140174a2a5a9acb10

    • SHA1

      5c9ed70c715999fb7056a2e135b2abab96b7059c

    • SHA256

      d493533fc222a5e6ab2fd8d17dd5099213090bf307647e8d50c9cfe51f9f3584

    • SHA512

      4c76f86bd979697d6b9c0c69dd79421ddb382b6f52d9b476d3e79d5bea904fb30890639ffe9b355175db22f4b70afc4e88d735d9c51827e0c8693c8666c6b2eb

    • SSDEEP

      12288:dXCNi9Bi6CyTvvl2ywehL8Y/6Wq1+e1aJa3e/I2eIrYJT0I6za+XLdi5C:oWi/yz8ywehL8Y/6V/aJa3e/LeAYJT0n

    Score
    7/10
    discoverypersistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks