Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8

  • Size

    533KB

  • Sample

    221012-vn67dscha8

  • MD5

    60bf216bd89b6faeb8f52aa8b73b4e08

  • SHA1

    85795a51b062861f11e059a97aaf5fa46e9e68d3

  • SHA256

    090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8

  • SHA512

    d550e091b7853d9557c18750d5e10342efc2c731db7d56a71421d29934f8c205490bfdc624b8a9bb45072be0618a1077d7ed1614b73f9c6fb74decd9e8ae7c80

  • SSDEEP

    12288:gXsVa0LWyNkUK8drvf+5pnFYGq6O881MS+Nkz1hH3F1T:WmW7oNO5pFYyO88KRO1J

Score
8/10

Malware Config

Targets

    • Target

      090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8

    • Size

      533KB

    • MD5

      60bf216bd89b6faeb8f52aa8b73b4e08

    • SHA1

      85795a51b062861f11e059a97aaf5fa46e9e68d3

    • SHA256

      090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8

    • SHA512

      d550e091b7853d9557c18750d5e10342efc2c731db7d56a71421d29934f8c205490bfdc624b8a9bb45072be0618a1077d7ed1614b73f9c6fb74decd9e8ae7c80

    • SSDEEP

      12288:gXsVa0LWyNkUK8drvf+5pnFYGq6O881MS+Nkz1hH3F1T:WmW7oNO5pFYyO88KRO1J

    Score
    8/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks