Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c

  • Size

    632KB

  • Sample

    221018-h7dmzafbfr

  • MD5

    d3a9112f8479de6d0bb80daa086ee39d

  • SHA1

    c7044e763bddd442c7ff7504efe954ea4dbe6848

  • SHA256

    8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c

  • SHA512

    0a604cea4bc5e13c6ac8bbbc381b9a1827e47ddde2b6713574e89ffd627eb2ac16be4760264a09d4894450d32359e9f2d233cef59dd5e9add6f1cf802f44d2d2

  • SSDEEP

    12288:QAEx4EoqHsQdmxl6zbr+F3KUf79EAN9IT6uOB2f/9E8k:LEx45zxI+bcTFY2dC

Malware Config

Targets

    • Target

      8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c

    • Size

      632KB

    • MD5

      d3a9112f8479de6d0bb80daa086ee39d

    • SHA1

      c7044e763bddd442c7ff7504efe954ea4dbe6848

    • SHA256

      8a93ed0f80b337ece9ffc9380fe6b69b6a1c7c25052a8f8eefecdc5a13e9966c

    • SHA512

      0a604cea4bc5e13c6ac8bbbc381b9a1827e47ddde2b6713574e89ffd627eb2ac16be4760264a09d4894450d32359e9f2d233cef59dd5e9add6f1cf802f44d2d2

    • SSDEEP

      12288:QAEx4EoqHsQdmxl6zbr+F3KUf79EAN9IT6uOB2f/9E8k:LEx45zxI+bcTFY2dC

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v6

Tasks