Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

8af91aea81...6N.exe

windows7-x64

7

8af91aea81...6N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8af91aea81f38caf2d413ae700c50bd9b6b5ed2e05d27da3cb77ddf0e2393de6N

  • Size

    3.7MB

  • Sample

    241018-h511gsxaqq

  • MD5

    bf3563405a32f8b97fc315896270dff0

  • SHA1

    96d268a515392022545142b879a1a1612d2b5278

  • SHA256

    8af91aea81f38caf2d413ae700c50bd9b6b5ed2e05d27da3cb77ddf0e2393de6

  • SHA512

    3f590eaf6b630eda761997f128c10ce72fbf86bdd5ed77e3b99c63e499b6ae4916818b38cc8958146f38ae9e365338309182f91a9d8c6a8332cdc76c3697dab1

  • SSDEEP

    49152:g/O6/G/I0vxB5NQNO5xrHUu5q7ixruTjWo0U7CUZ+ctb9BFPiKK/ykxYF/OpoCwk:g/O6/G/IixB5+OI48SPx

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      8af91aea81f38caf2d413ae700c50bd9b6b5ed2e05d27da3cb77ddf0e2393de6N

    • Size

      3.7MB

    • MD5

      bf3563405a32f8b97fc315896270dff0

    • SHA1

      96d268a515392022545142b879a1a1612d2b5278

    • SHA256

      8af91aea81f38caf2d413ae700c50bd9b6b5ed2e05d27da3cb77ddf0e2393de6

    • SHA512

      3f590eaf6b630eda761997f128c10ce72fbf86bdd5ed77e3b99c63e499b6ae4916818b38cc8958146f38ae9e365338309182f91a9d8c6a8332cdc76c3697dab1

    • SSDEEP

      49152:g/O6/G/I0vxB5NQNO5xrHUu5q7ixruTjWo0U7CUZ+ctb9BFPiKK/ykxYF/OpoCwk:g/O6/G/IixB5+OI48SPx

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks