Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

2c08a7598f...66.exe

windows7-x64

8

2c08a7598f...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c08a7598f92ff17a5978d3ffc280cc07585973dbf1f52a0e6e4b0388d548b66

  • Size

    57KB

  • Sample

    240925-q6laessbkb

  • MD5

    2858ad32ec297be4e351cc2cf46b291d

  • SHA1

    3d84743d90a6bbafc874a9cd6bad4c142f337e5d

  • SHA256

    2c08a7598f92ff17a5978d3ffc280cc07585973dbf1f52a0e6e4b0388d548b66

  • SHA512

    57b9510b3f7f252c12da04d864a9d381fd51cd798352bdbd56656bbe47e1095d8ec1b5b6fa21108b5ed9e787d755221edab70e50a825d62c27ea7f907839692c

  • SSDEEP

    1536:2MaYzMXqtGNttyeiZnZLYm1R6jWWvr78Pxc:2MaY46tGNttyeQLYm1ReWWvrQxc

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      2c08a7598f92ff17a5978d3ffc280cc07585973dbf1f52a0e6e4b0388d548b66

    • Size

      57KB

    • MD5

      2858ad32ec297be4e351cc2cf46b291d

    • SHA1

      3d84743d90a6bbafc874a9cd6bad4c142f337e5d

    • SHA256

      2c08a7598f92ff17a5978d3ffc280cc07585973dbf1f52a0e6e4b0388d548b66

    • SHA512

      57b9510b3f7f252c12da04d864a9d381fd51cd798352bdbd56656bbe47e1095d8ec1b5b6fa21108b5ed9e787d755221edab70e50a825d62c27ea7f907839692c

    • SSDEEP

      1536:2MaYzMXqtGNttyeiZnZLYm1R6jWWvr78Pxc:2MaY46tGNttyeQLYm1ReWWvrQxc

    Score
    8/10
    discoveryspywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks