Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3c340494dd7a390d2098a86b6c51473482b282fed4a1cfde9f83b5e19fab8563

  • Size

    1.0MB

  • Sample

    221011-w5qreahfgm

  • MD5

    6c2e660b4a3fc146ed213b2e9e14ae60

  • SHA1

    bd57fe209bd8be3ba886132821546748a84e6bb7

  • SHA256

    3c340494dd7a390d2098a86b6c51473482b282fed4a1cfde9f83b5e19fab8563

  • SHA512

    9f2c4ae9a47988b20a5dfa751d6da8b53faf837fc01b18193a37b132a5aa0a940dc42dc3387f071fbe5ff5ecddc9f247b62ad0399780469830fac92e17d39438

  • SSDEEP

    24576:tCMzbZGtMzTcgZMK2d+wOegZKEW0bz7wSAHF4po:tRPZMOngRalW0fTAHEo

Malware Config

Targets

    • Target

      3c340494dd7a390d2098a86b6c51473482b282fed4a1cfde9f83b5e19fab8563

    • Size

      1.0MB

    • MD5

      6c2e660b4a3fc146ed213b2e9e14ae60

    • SHA1

      bd57fe209bd8be3ba886132821546748a84e6bb7

    • SHA256

      3c340494dd7a390d2098a86b6c51473482b282fed4a1cfde9f83b5e19fab8563

    • SHA512

      9f2c4ae9a47988b20a5dfa751d6da8b53faf837fc01b18193a37b132a5aa0a940dc42dc3387f071fbe5ff5ecddc9f247b62ad0399780469830fac92e17d39438

    • SSDEEP

      24576:tCMzbZGtMzTcgZMK2d+wOegZKEW0bz7wSAHF4po:tRPZMOngRalW0fTAHEo

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks