Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

992ef5a0cd...0N.exe

windows7-x64

8

992ef5a0cd...0N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    992ef5a0cd8afa5e5823c731ac4f9130N

  • Size

    66KB

  • Sample

    240914-jadr5ssdnr

  • MD5

    992ef5a0cd8afa5e5823c731ac4f9130

  • SHA1

    c3e07d9db51bab7d32b8c0ec3c329ef3118787a5

  • SHA256

    b81fa49b6fe7ffad48a68d52a61763ea0ada10ac91d6b7bf5ab1482304cda018

  • SHA512

    41406221d08c01e6a4064ad50af6e4ada8c8229bb3250c8006e62c2aebbb93bcfffaa6461f8cddfa80206d6135ead34c844e2f498f6627093c9e23c1b1ef58de

  • SSDEEP

    1536:PGHzaYzMXqtGNttyUn01Q78a4Rs2kKzs2Irj5hN:PGTaY46tGNttyJQ7KRs2kKzQj5r

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      992ef5a0cd8afa5e5823c731ac4f9130N

    • Size

      66KB

    • MD5

      992ef5a0cd8afa5e5823c731ac4f9130

    • SHA1

      c3e07d9db51bab7d32b8c0ec3c329ef3118787a5

    • SHA256

      b81fa49b6fe7ffad48a68d52a61763ea0ada10ac91d6b7bf5ab1482304cda018

    • SHA512

      41406221d08c01e6a4064ad50af6e4ada8c8229bb3250c8006e62c2aebbb93bcfffaa6461f8cddfa80206d6135ead34c844e2f498f6627093c9e23c1b1ef58de

    • SSDEEP

      1536:PGHzaYzMXqtGNttyUn01Q78a4Rs2kKzs2Irj5hN:PGTaY46tGNttyJQ7KRs2kKzQj5r

    Score
    8/10
    discoveryspywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks