Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

e018c7a952...95.exe

windows7-x64

9

e018c7a952...95.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e018c7a9526e69c9e6e991cea006d0dd2174e178957839cf244c7dcbea5bd095

  • Size

    2.6MB

  • Sample

    240824-ftrxbsvcla

  • MD5

    827d1a54f0828cd0b365b0972ce2fe96

  • SHA1

    73a18d81703c0569967b0b35fa4d045f427b2769

  • SHA256

    e018c7a9526e69c9e6e991cea006d0dd2174e178957839cf244c7dcbea5bd095

  • SHA512

    27f261a29ca2a9c62ebb43230927fadf839d138b26f4256c29c573681df93c8f4e0670b13d4a905d6a9e9d753629f2869d94ee2b460881402e06085568bbf8bb

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bS:sxX7QnxrloE5dpUpRb

Score
9/10
credential_accessdiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      e018c7a9526e69c9e6e991cea006d0dd2174e178957839cf244c7dcbea5bd095

    • Size

      2.6MB

    • MD5

      827d1a54f0828cd0b365b0972ce2fe96

    • SHA1

      73a18d81703c0569967b0b35fa4d045f427b2769

    • SHA256

      e018c7a9526e69c9e6e991cea006d0dd2174e178957839cf244c7dcbea5bd095

    • SHA512

      27f261a29ca2a9c62ebb43230927fadf839d138b26f4256c29c573681df93c8f4e0670b13d4a905d6a9e9d753629f2869d94ee2b460881402e06085568bbf8bb

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bS:sxX7QnxrloE5dpUpRb

    Score
    9/10
    credential_accessdiscoverypersistencespywarestealer

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

      credential_accessstealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks