Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a458c9dd99...0N.exe

windows7-x64

8

a458c9dd99...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a458c9dd995ecbd8c329fd9b4018a5f0N

  • Size

    6.2MB

  • Sample

    240911-jccb4ayfnl

  • MD5

    a458c9dd995ecbd8c329fd9b4018a5f0

  • SHA1

    08a4b9c7238f14c11f896a6b99ad5bc6eadc4345

  • SHA256

    0c7765593b0576f6aa16f676b786c4d59da82dbd9840fa2cd86972722208780b

  • SHA512

    9c854fff02a9b8f5e1110a748f2cf5c3b8301fdc51570ebadad36b588d1c4625d14bcb2aa795fcaf963b1c34bdaa09e2227ef8f3e87f9e6c0366e36a3a93eadb

  • SSDEEP

    196608:6WWjrx+kYfj+uwyzYRUlh+vzWnoHavRfuOzk:6Noi+z2UlQzWoHMduOQ

Score
8/10
discoveryevasionspywarestealerupx

Malware Config

Targets

    • Target

      a458c9dd995ecbd8c329fd9b4018a5f0N

    • Size

      6.2MB

    • MD5

      a458c9dd995ecbd8c329fd9b4018a5f0

    • SHA1

      08a4b9c7238f14c11f896a6b99ad5bc6eadc4345

    • SHA256

      0c7765593b0576f6aa16f676b786c4d59da82dbd9840fa2cd86972722208780b

    • SHA512

      9c854fff02a9b8f5e1110a748f2cf5c3b8301fdc51570ebadad36b588d1c4625d14bcb2aa795fcaf963b1c34bdaa09e2227ef8f3e87f9e6c0366e36a3a93eadb

    • SSDEEP

      196608:6WWjrx+kYfj+uwyzYRUlh+vzWnoHavRfuOzk:6Noi+z2UlQzWoHMduOQ

    Score
    8/10
    discoveryevasionspywarestealerupx

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks