Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a9f241143f...b1.exe

windows7-x64

8

a9f241143f...b1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a9f241143fd476d42bed70ab3fb7dfb31fda59ceaec2eca9dabe136fb432adb1

  • Size

    66KB

  • Sample

    240925-we5gwaydmj

  • MD5

    9a769a66705076525660d751ac973f10

  • SHA1

    84c2e6fcc5e44a94a3c70e72d3c58476ef8fe344

  • SHA256

    a9f241143fd476d42bed70ab3fb7dfb31fda59ceaec2eca9dabe136fb432adb1

  • SHA512

    e105b5ecb8864e34c573a2696c2a3653c84e2225430e4bcbdc92da6106c1550171dc782097c45c07784526015970a937d8591cd2fd78db735aab6e8177ae0a9d

  • SSDEEP

    1536:JEaYzMXqtGN/CstC9qVFuiS4qz0XSW3iDhy3:JEaY46tGNFC0VFPS4qz3DhO

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      a9f241143fd476d42bed70ab3fb7dfb31fda59ceaec2eca9dabe136fb432adb1

    • Size

      66KB

    • MD5

      9a769a66705076525660d751ac973f10

    • SHA1

      84c2e6fcc5e44a94a3c70e72d3c58476ef8fe344

    • SHA256

      a9f241143fd476d42bed70ab3fb7dfb31fda59ceaec2eca9dabe136fb432adb1

    • SHA512

      e105b5ecb8864e34c573a2696c2a3653c84e2225430e4bcbdc92da6106c1550171dc782097c45c07784526015970a937d8591cd2fd78db735aab6e8177ae0a9d

    • SSDEEP

      1536:JEaYzMXqtGN/CstC9qVFuiS4qz0XSW3iDhy3:JEaY46tGNFC0VFPS4qz3DhO

    Score
    8/10
    discoveryspywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks