Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    MurGaa Auto Clicker.app.zip

  • Size

    825KB

  • Sample

    240826-f8peraygqq

  • MD5

    87f48aed4406e6ec29775b8d2b0a24e1

  • SHA1

    3a6b0c9e4bae12c9d1800148a185b36f8a856d42

  • SHA256

    eee5324309fbd237b7e1e00fc1b3b60f03fa43bb25d3a4ee5c4f45efe68c6e32

  • SHA512

    8c206db80a5a8c948b89ce91da3761de001db3b2640c12b920f1363ac95226fbb7f289ca96a153038d441d3be9c9bc22f68b150304321b8a7968fbdfb51c2967

  • SSDEEP

    24576:VpZpprdiSrdiFMVt3fZRcySKtlnXKLibzhYYK2DMg8CzoxU:VpZpddi0diFMVRZ4KbgAN3PCAKU

Malware Config

Targets

    • Target

      MurGaa Auto Clicker.app.zip

    • Size

      825KB

    • MD5

      87f48aed4406e6ec29775b8d2b0a24e1

    • SHA1

      3a6b0c9e4bae12c9d1800148a185b36f8a856d42

    • SHA256

      eee5324309fbd237b7e1e00fc1b3b60f03fa43bb25d3a4ee5c4f45efe68c6e32

    • SHA512

      8c206db80a5a8c948b89ce91da3761de001db3b2640c12b920f1363ac95226fbb7f289ca96a153038d441d3be9c9bc22f68b150304321b8a7968fbdfb51c2967

    • SSDEEP

      24576:VpZpprdiSrdiFMVt3fZRcySKtlnXKLibzhYYK2DMg8CzoxU:VpZpddi0diFMVRZ4KbgAN3PCAKU

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks