Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Wave.exe

  • Size

    33.4MB

  • Sample

    240811-za474awhlp

  • MD5

    eaaf352176c3b1e0b40f0f57dca55450

  • SHA1

    9c70f9fd768ea4170fa1544176bca715d3492078

  • SHA256

    1fd3bb3104e2e2acdcf7568a42811804fc8d15e2213062072406ed084064cf7f

  • SHA512

    e6d7f8aaaa64316257c045a05fa4fb8a2a57e23fd94c2ff9f447d3f8c8a612ace8e00d6125963ae37e6ffb523baa8c2409ada852229eaaf789e5c93d3fb13d96

  • SSDEEP

    786432:19NB7vDydb3+KvIe6WCESWqE5SezZ8vqW8we8M8obiGc73rh0siKV:LNB7v2d9vIe6MqQZ19WbTIiGE0xM

Score
7/10

Malware Config

Targets

    • Target

      Wave.exe

    • Size

      33.4MB

    • MD5

      eaaf352176c3b1e0b40f0f57dca55450

    • SHA1

      9c70f9fd768ea4170fa1544176bca715d3492078

    • SHA256

      1fd3bb3104e2e2acdcf7568a42811804fc8d15e2213062072406ed084064cf7f

    • SHA512

      e6d7f8aaaa64316257c045a05fa4fb8a2a57e23fd94c2ff9f447d3f8c8a612ace8e00d6125963ae37e6ffb523baa8c2409ada852229eaaf789e5c93d3fb13d96

    • SSDEEP

      786432:19NB7vDydb3+KvIe6WCESWqE5SezZ8vqW8we8M8obiGc73rh0siKV:LNB7v2d9vIe6MqQZ19WbTIiGE0xM

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks