Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ddba367d4c...0N.exe

windows7-x64

7

ddba367d4c...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ddba367d4cd0456850f5a9bf0cae2a5273ef67b9f091787fff26ed5e6d58e050N

  • Size

    2.6MB

  • Sample

    240927-zd6v4a1bjf

  • MD5

    a8997dc1a098d34b1a5275cdca2fcfe0

  • SHA1

    777296c1801c7cc4ba11064833bd2750db28840e

  • SHA256

    ddba367d4cd0456850f5a9bf0cae2a5273ef67b9f091787fff26ed5e6d58e050

  • SHA512

    92a5481c6137b6ae553abae078a757fca9ca8178507d4c197814cd6e1cda0b8a48343bd66919656376892ad2ca4d950577a69f77fcb9d0c08ccfb33d66ed34d2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpNb

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      ddba367d4cd0456850f5a9bf0cae2a5273ef67b9f091787fff26ed5e6d58e050N

    • Size

      2.6MB

    • MD5

      a8997dc1a098d34b1a5275cdca2fcfe0

    • SHA1

      777296c1801c7cc4ba11064833bd2750db28840e

    • SHA256

      ddba367d4cd0456850f5a9bf0cae2a5273ef67b9f091787fff26ed5e6d58e050

    • SHA512

      92a5481c6137b6ae553abae078a757fca9ca8178507d4c197814cd6e1cda0b8a48343bd66919656376892ad2ca4d950577a69f77fcb9d0c08ccfb33d66ed34d2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpNb

    Score
    7/10
    discoverypersistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks