Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2426c32acefefd686b74daf8ccd2a7ce60e5c7418bc335330aaeed85dc18bdbb

  • Size

    251KB

  • Sample

    221029-27menabbf7

  • MD5

    83adc65a67ae48efedd48f139f76ad49

  • SHA1

    18668efdf8ed9f041ed1f1d020749070b9e08dbc

  • SHA256

    2426c32acefefd686b74daf8ccd2a7ce60e5c7418bc335330aaeed85dc18bdbb

  • SHA512

    791f9d160c004e286a3da28d40636a5ba64cad2c0463e8fa05921df6b2f75ba04305b9f630b1f9bf078264211f0fa21483e0f02d54ec3884c0562fe4f90d2e0e

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4syRe8v6h+Aem/RZlSLEZ9Z:91OgLdau8IOm5ZAS

Malware Config

Targets

    • Target

      2426c32acefefd686b74daf8ccd2a7ce60e5c7418bc335330aaeed85dc18bdbb

    • Size

      251KB

    • MD5

      83adc65a67ae48efedd48f139f76ad49

    • SHA1

      18668efdf8ed9f041ed1f1d020749070b9e08dbc

    • SHA256

      2426c32acefefd686b74daf8ccd2a7ce60e5c7418bc335330aaeed85dc18bdbb

    • SHA512

      791f9d160c004e286a3da28d40636a5ba64cad2c0463e8fa05921df6b2f75ba04305b9f630b1f9bf078264211f0fa21483e0f02d54ec3884c0562fe4f90d2e0e

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4syRe8v6h+Aem/RZlSLEZ9Z:91OgLdau8IOm5ZAS

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks