Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Ficha_Reembolso_1.cmd

  • Size

    1.3MB

  • Sample

    220908-fwmqdsaham

  • MD5

    eb604400d1341437d72c331613455a76

  • SHA1

    137a312c8ab7389afb5af0d3980ffb7c6a7dd5e1

  • SHA256

    46fd4d7d232ec606f235a8c6929ad959ae5fea1509ba4575a280513401b5f41b

  • SHA512

    d2dfef736e73d3d0a25a2b707b92c3f57e4a5673198fac3de20bf5119d92d012824d2ab33a23a499be5a10b5018ff418e4c3dc48fa4d31785588eb4970c26a4b

  • SSDEEP

    24576:631wpEXwOOCWVkSnz3R/sOfRQEZZjEg6GEaeJu47fnpdRgaCQIAYhrz:NpzNCWBDBsA5Z4lLD0H9z

Malware Config

Targets

    • Target

      Ficha_Reembolso_1.cmd

    • Size

      1.3MB

    • MD5

      eb604400d1341437d72c331613455a76

    • SHA1

      137a312c8ab7389afb5af0d3980ffb7c6a7dd5e1

    • SHA256

      46fd4d7d232ec606f235a8c6929ad959ae5fea1509ba4575a280513401b5f41b

    • SHA512

      d2dfef736e73d3d0a25a2b707b92c3f57e4a5673198fac3de20bf5119d92d012824d2ab33a23a499be5a10b5018ff418e4c3dc48fa4d31785588eb4970c26a4b

    • SSDEEP

      24576:631wpEXwOOCWVkSnz3R/sOfRQEZZjEg6GEaeJu47fnpdRgaCQIAYhrz:NpzNCWBDBsA5Z4lLD0H9z

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

MITRE ATT&CK Enterprise v6

Tasks