Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a2a02cc13e...da.exe

windows7-x64

7

a2a02cc13e...da.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a2a02cc13ecca61c209a7fa2a36fb28f8592e5e905e2fbebdde7e250fe5106da

  • Size

    2.0MB

  • Sample

    240818-byzqhs1cnn

  • MD5

    7a0ff6115ba51deb19365b69055bfe87

  • SHA1

    cc17cb0fc3404a1cee33e8402903e1020ce20d31

  • SHA256

    a2a02cc13ecca61c209a7fa2a36fb28f8592e5e905e2fbebdde7e250fe5106da

  • SHA512

    36b84a49d91dd5b081c65008fb6e68acf9be8b3bda0e98b020904d46545a204f085875f42ec839c8e20f524e8f1e9c75c9f81a767a5b82fbcb6346e06ed73936

  • SSDEEP

    49152:ZVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:PApQx5+Mc27g9tfoMv

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      a2a02cc13ecca61c209a7fa2a36fb28f8592e5e905e2fbebdde7e250fe5106da

    • Size

      2.0MB

    • MD5

      7a0ff6115ba51deb19365b69055bfe87

    • SHA1

      cc17cb0fc3404a1cee33e8402903e1020ce20d31

    • SHA256

      a2a02cc13ecca61c209a7fa2a36fb28f8592e5e905e2fbebdde7e250fe5106da

    • SHA512

      36b84a49d91dd5b081c65008fb6e68acf9be8b3bda0e98b020904d46545a204f085875f42ec839c8e20f524e8f1e9c75c9f81a767a5b82fbcb6346e06ed73936

    • SSDEEP

      49152:ZVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:PApQx5+Mc27g9tfoMv

    Score
    8/10
    discoveryspywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks