Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

6cd3f1f032...ec.exe

windows7-x64

7

6cd3f1f032...ec.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6cd3f1f0327a42cf1591e89a823ce1385d66fee65a0731d0ae1fe6a74fd7c3ec

  • Size

    3.1MB

  • Sample

    240818-atrzfaybml

  • MD5

    9ca70e81aa2739e2437f2b835efc4751

  • SHA1

    80087834fd55737fcf6b3ebfe28f1a7c3a744218

  • SHA256

    6cd3f1f0327a42cf1591e89a823ce1385d66fee65a0731d0ae1fe6a74fd7c3ec

  • SHA512

    1ef7619a46e2a6f2cf20a7a7338b2839f22908fbf68c90defd9cea63dce8cd2c20ac078579a765af3e3b20df1d3da509a6b41db31cd170ac627e9fe784423a8e

  • SSDEEP

    49152:LVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:hA7VyRPS7MLq4ykF09+riyXWz6Ha

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      6cd3f1f0327a42cf1591e89a823ce1385d66fee65a0731d0ae1fe6a74fd7c3ec

    • Size

      3.1MB

    • MD5

      9ca70e81aa2739e2437f2b835efc4751

    • SHA1

      80087834fd55737fcf6b3ebfe28f1a7c3a744218

    • SHA256

      6cd3f1f0327a42cf1591e89a823ce1385d66fee65a0731d0ae1fe6a74fd7c3ec

    • SHA512

      1ef7619a46e2a6f2cf20a7a7338b2839f22908fbf68c90defd9cea63dce8cd2c20ac078579a765af3e3b20df1d3da509a6b41db31cd170ac627e9fe784423a8e

    • SSDEEP

      49152:LVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:hA7VyRPS7MLq4ykF09+riyXWz6Ha

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks