Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

14/08/2024, 17:49

240814-wefhrazfln 8

14/08/2024, 17:47

240814-wcv6eszemr 3

General

  • Target

    istripper-vst-crack-download

  • Size

    100KB

  • Sample

    240814-wefhrazfln

  • MD5

    cbb542b172c097d4b301456dcdfae053

  • SHA1

    7bea917a76a5d50045aea39485a251652760b52c

  • SHA256

    eff570f89626bb82bc162019dca3afe05fb5d8e7b6a46135f94236563603fae9

  • SHA512

    9e4735c2d613595d78a4dd222d9af8634633a6cf9d33b37b86de6aeacbfb1186d6584801bd7389378f8fe635a1fcc13c3997c932029d796ee097cb658128f194

  • SSDEEP

    1536:Zjtjap8WjuUvnspIw/ZPpIw/yK3oxo/bVS:ptG/dz+8o4

Malware Config

Targets

    • Target

      istripper-vst-crack-download

    • Size

      100KB

    • MD5

      cbb542b172c097d4b301456dcdfae053

    • SHA1

      7bea917a76a5d50045aea39485a251652760b52c

    • SHA256

      eff570f89626bb82bc162019dca3afe05fb5d8e7b6a46135f94236563603fae9

    • SHA512

      9e4735c2d613595d78a4dd222d9af8634633a6cf9d33b37b86de6aeacbfb1186d6584801bd7389378f8fe635a1fcc13c3997c932029d796ee097cb658128f194

    • SSDEEP

      1536:Zjtjap8WjuUvnspIw/ZPpIw/yK3oxo/bVS:ptG/dz+8o4

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks