Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    00831b5a524994073f457da9d77070d1b9f13cc54af51ef327e1d650416c740e

  • Size

    391KB

  • Sample

    220911-zt6j9scbg5

  • MD5

    c84175424742f493d651528b48c78625

  • SHA1

    e285f6ab88db41d061a0fe1bdb4c27a4e7bf4cd1

  • SHA256

    00831b5a524994073f457da9d77070d1b9f13cc54af51ef327e1d650416c740e

  • SHA512

    4af7f80b2553aac62ac39fe90bef98e7ab9f718a3545bc9d5774b8eef5ae922d266e2ca1800ab98ed7cb0cf7721fe5a4bb9e8781a21b8bb22377f520ed6e0160

  • SSDEEP

    6144:LUmp8bNhfKU69+2cby4kktoOiymoR3wqSDvgWQeQIm/pBuIz/um/:LpcgE2cby4kktoOcTqaZ8xBj

Malware Config

Targets

    • Target

      00831b5a524994073f457da9d77070d1b9f13cc54af51ef327e1d650416c740e

    • Size

      391KB

    • MD5

      c84175424742f493d651528b48c78625

    • SHA1

      e285f6ab88db41d061a0fe1bdb4c27a4e7bf4cd1

    • SHA256

      00831b5a524994073f457da9d77070d1b9f13cc54af51ef327e1d650416c740e

    • SHA512

      4af7f80b2553aac62ac39fe90bef98e7ab9f718a3545bc9d5774b8eef5ae922d266e2ca1800ab98ed7cb0cf7721fe5a4bb9e8781a21b8bb22377f520ed6e0160

    • SSDEEP

      6144:LUmp8bNhfKU69+2cby4kktoOiymoR3wqSDvgWQeQIm/pBuIz/um/:LpcgE2cby4kktoOcTqaZ8xBj

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks