Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

ebfd53ae89...1e.exe

windows7-x64

8

ebfd53ae89...1e.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ebfd53ae895e6020b4bb14ddfe6346ce35da6ba9f25ea398a3a30530d815671e

  • Size

    11.1MB

  • Sample

    240925-x1171sshjq

  • MD5

    d6b171ebed01d2edd705fc21694e1a17

  • SHA1

    f381f4c78d0004227a0bc23e92c391736755fd82

  • SHA256

    ebfd53ae895e6020b4bb14ddfe6346ce35da6ba9f25ea398a3a30530d815671e

  • SHA512

    21f8b9a17b17b93c1b4e87339f076b690ff8f00a1164d7c77703d8668120cd014a4f39a66deeb3704dd84b762b5fa2e9a08593e00093f5b9a9a17c8c7eedc59b

  • SSDEEP

    98304:FdQb+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:Fk+kIGv3y/x+KTbfjJ+kdnAlejY

Score
8/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      ebfd53ae895e6020b4bb14ddfe6346ce35da6ba9f25ea398a3a30530d815671e

    • Size

      11.1MB

    • MD5

      d6b171ebed01d2edd705fc21694e1a17

    • SHA1

      f381f4c78d0004227a0bc23e92c391736755fd82

    • SHA256

      ebfd53ae895e6020b4bb14ddfe6346ce35da6ba9f25ea398a3a30530d815671e

    • SHA512

      21f8b9a17b17b93c1b4e87339f076b690ff8f00a1164d7c77703d8668120cd014a4f39a66deeb3704dd84b762b5fa2e9a08593e00093f5b9a9a17c8c7eedc59b

    • SSDEEP

      98304:FdQb+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:Fk+kIGv3y/x+KTbfjJ+kdnAlejY

    Score
    8/10
    discoveryspywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.