aurora | b37a4aed2d41161e6d1d190d3062329641cf03fa24acd3bb8206c32fc43c6cdf | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

2024-12-04...ch.exe

windows7-x64

1

2024-12-04...ch.exe

windows10-2004-x64

1

Sharing

General

Target

2024-12-04_b8ffdd3020a594007d0e1d0fb6f32f75_frostygoop_luca-stealer_poet-rat_snatch
Size

4.5MB
Sample

241204-v8l2ysymam
MD5

b8ffdd3020a594007d0e1d0fb6f32f75
SHA1

23cc662aa97c718ff8f85f12f8324642331619eb
SHA256

b37a4aed2d41161e6d1d190d3062329641cf03fa24acd3bb8206c32fc43c6cdf
SHA512

0350d92e6cbab96cb6be550448893658602a6f17aea92f6a50836b1ad0c47c2f35d911304a33f6a552e8da6affc0f2417cbfb028c0927c1f141d6d5d71c55d70
SSDEEP

49152:O59j8XHYw8qxXtL3qsp/pm3PrA9AZJCaU5EBvwtGH5RDHp01Z:W8Xsq7p/pE6EYGZRDW

Score

10^/10

aurora

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-12-04_b8ffdd3020a594007d0e1d0fb6f32f75_frostygoop_luca-stealer_poet-rat_snatch.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-12-04_b8ffdd3020a594007d0e1d0fb6f32f75_frostygoop_luca-stealer_poet-rat_snatch.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-12-04_b8ffdd3020a594007d0e1d0fb6f32f75_frostygoop_luca-stealer_poet-rat_snatch
- Size
  
  4.5MB
- MD5
  
  b8ffdd3020a594007d0e1d0fb6f32f75
- SHA1
  
  23cc662aa97c718ff8f85f12f8324642331619eb
- SHA256
  
  b37a4aed2d41161e6d1d190d3062329641cf03fa24acd3bb8206c32fc43c6cdf
- SHA512
  
  0350d92e6cbab96cb6be550448893658602a6f17aea92f6a50836b1ad0c47c2f35d911304a33f6a552e8da6affc0f2417cbfb028c0927c1f141d6d5d71c55d70
- SSDEEP
  
  49152:O59j8XHYw8qxXtL3qsp/pm3PrA9AZJCaU5EBvwtGH5RDHp01Z:W8Xsq7p/pE6EYGZRDW
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy